ALEXANDRAMONTLUCON

waou je vais me faire demonter la tete moi y a pas moyen de recuperer au moins ses fichiers non exe type photo ? en plus ca part mal j'ai pas d'onglet restauration du systeme dans "Pour désactiver la Restauration du système, procédez comme suit : 1. Cliquez sur Démarrer, cliquez avec le bouton droit sur Poste de travail, puis cliquez sur Propriétés. 2. Cliquez sur l'onglet Restauration du système. " je touche plus a rien pour ce soir a suivre demain merci infiniment deja pour le temps passer @++

oulala ca se complique une peu donc j'ai accepté la limitation de garantie ca a fait bip bip et j'ai un message qui a apparu : © CJoint.com, 2008 je fais quoi j'ai plus touché a rien j'ai encore le message a l'ecran et je vois comment moi cette histoire de bits ??? desolé je suis pas tres au point

question avant de faire des betises : comme tu as vu je suis toujours en mode sans echec ! dois-je redemarrer en standard pour effectuer ceci ? (pour l'instant je n'ai aucune connection internet possible ??

j'etais tellement absorbee a faire les choses correctement j'avais pas vu le trait d'humour avant de poster les rapports ! et bien figure toi que nous sommes deux alors ... je m'incline rarement devant un pc recalcitrant lol j'ai deja passé la nuit derniere dessus et si il faut je recommencerais et toc la c'est toi qui commande ! moi j'execute ... mon directeur fera certainement la tete en voyant ma trombine demain mais tant pis lol

petite info il a fallut redemarrer la bete après le nettoyage voilà pour le 1er rapport : ======= RAPPORT D'AD-REMOVER 2.0.0.1,E | UNIQUEMENT XP/VISTA/7 ======= Mis à jour par C_XX le 06/09/10 à 15:20 Contact: AdRemover.contact[AT]gmail.com Site web: TEAM X SCRIPT : UsbFix - AD-Remover - FindyKill C:\Program Files\Ad-Remover\main.exe (SCAN [1]) -> Lancé à 23:37:58 le 14/09/2010, Mode sans echec Microsoft Windows XP Édition familiale Service Pack 3 (X86) alex@ACER-FE8B363750 ( ) ============== RECHERCHE ============== ============== SCAN ADDITIONNEL ============== ** Mozilla Firefox Version [3.0.19 (fr)] ** -- C:\Documents and Settings\alex\Application Data\Mozilla\FireFox\Profiles\t629e12x.default\Prefs.js -- browser.search.selectedEngine, MyHeritage Search browser.startup.homepage, www.google.fr browser.startup.homepage_override.mstone, rv:1.9.0.19 ======================================== ** Internet Explorer Version [8.0.6001.18702] ** [HKCU\Software\Microsoft\Internet Explorer\Main] AutoHide: yes Default_Page_URL: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome Default_Search_URL: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch Do404Search: 0x01000000 Enable Browser Extensions: yes Local Page: C:\WINDOWS\system32\blank.htm Search bar: hxxp://go.microsoft.com/fwlink/?linkid=54896 Show_ToolBar: yes Start Page: hxxp://fr.msn.com/ Use Custom Search URL: 1 [HKLM\Software\Microsoft\Internet Explorer\Main] Default_Page_URL: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome Default_Search_URL: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch Delete_Temp_Files_On_Exit: yes Local Page: C:\WINDOWS\system32\blank.htm Search bar: hxxp://search.msn.com/spbasic.htm Search Page: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch Start Page: hxxp://fr.msn.com/ [HKLM\Software\Microsoft\Internet Explorer\ABOUTURLS] Tabs: res://ieframe.dll/tabswelcome.htm Blank: res://mshtml.dll/blank.htm ======================================== C:\Program Files\Ad-Remover\Quarantine: 105 Fichier(s) C:\Program Files\Ad-Remover\Backup: 14 Fichier(s) C:\Ad-Report-CLEAN[1].txt - 14/09/2010 (4449 Octet(s)) C:\Ad-Report-SCAN[1].txt - 14/09/2010 (435 Octet(s)) Fin à: 23:45:16, 14/09/2010 ============== E.O.F ============== et voilà pour le 2ème rapport : ======= RAPPORT D'AD-REMOVER 2.0.0.1,E | UNIQUEMENT XP/VISTA/7 ======= Mis à jour par C_XX le 06/09/10 à 15:20 Contact: AdRemover.contact[AT]gmail.com Site web: TEAM X SCRIPT : UsbFix - AD-Remover - FindyKill C:\Program Files\Ad-Remover\main.exe (CLEAN [2]) -> Lancé à 23:47:33 le 14/09/2010, Mode sans echec Microsoft Windows XP Édition familiale Service Pack 3 (X86) alex@ACER-FE8B363750 ( ) ============== ACTION(S) ============== (!) -- Fichiers temporaires supprimés. ============== SCAN ADDITIONNEL ============== ** Mozilla Firefox Version [3.0.19 (fr)] ** -- C:\Documents and Settings\alex\Application Data\Mozilla\FireFox\Profiles\t629e12x.default\Prefs.js -- browser.search.selectedEngine, MyHeritage Search browser.startup.homepage, www.google.fr browser.startup.homepage_override.mstone, rv:1.9.0.19 ======================================== ** Internet Explorer Version [8.0.6001.18702] ** [HKCU\Software\Microsoft\Internet Explorer\Main] AutoHide: yes Default_Page_URL: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome Default_Search_URL: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch Do404Search: 0x01000000 Enable Browser Extensions: yes Local Page: C:\WINDOWS\system32\blank.htm Search bar: hxxp://go.microsoft.com/fwlink/?linkid=54896 Show_ToolBar: yes Start Page: hxxp://fr.msn.com/ Use Custom Search URL: 1 [HKLM\Software\Microsoft\Internet Explorer\Main] Default_Page_URL: hxxp://go.microsoft.com/fwlink/?LinkId=54896 Default_Search_URL: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch Delete_Temp_Files_On_Exit: yes Local Page: C:\WINDOWS\system32\blank.htm Search bar: hxxp://search.msn.com/spbasic.htm Search Page: hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch Start Page: hxxp://fr.msn.com/ [HKLM\Software\Microsoft\Internet Explorer\ABOUTURLS] Tabs: res://ieframe.dll/tabswelcome.htm Blank: res://mshtml.dll/blank.htm ======================================== C:\Program Files\Ad-Remover\Quarantine: 105 Fichier(s) C:\Program Files\Ad-Remover\Backup: 15 Fichier(s) C:\Ad-Report-CLEAN[1].txt - 14/09/2010 (4449 Octet(s)) C:\Ad-Report-SCAN[1].txt - 14/09/2010 (2274 Octet(s)) C:\Ad-Report-CLEAN[2].txt - 14/09/2010 (480 Octet(s)) Fin à: 23:54:42, 14/09/2010 ============== E.O.F ==============

en attendant les rapports, je peux repondre à la question. Je bosse en mode sans echec depuis le debut car quand je demarrais le pc en normal j'avais toutes les fenetres de security machin et antimalabar truc qui s'ouvraient et je ne pouvais plus toucher du tout au PC ! donc mode sans echec c'etait plus facile pour bosser ... voili voilou et pour la petite explication je bosse en parrallele sur mon portable pour telecharger tous les logiciels que tu me dis, je transfert ensuite sur le PC ... c'est fastidieux mais ca marche pas mal pour l'instant et tu n'as pas l'air trop mecontent donc ... je post les rapports dès emissions

et voilà monsieur (t'as vu suis sage maintenant ): Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 23:20:37, on 14/09/2010 Platform: Windows XP SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v8.00 (8.00.6001.18702) Boot mode: Safe mode Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\Explorer.EXE C:\Program Files\Trend Micro\HijackThis\HijackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = Bing R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = MSN : Hotmail, Messenger, Bing, Actualité et Sport R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MSN : Hotmail, Messenger, Bing, Actualité et Sport R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens R3 - URLSearchHook: Search Class - {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\Program Files\OrangeHSS\SearchURLHook\SearchPageURL.dll O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll O2 - BHO: (no name) - {08D5B359-0FA2-4F2A-91A0-06189E82B8F5} - c:\windows\system32\dlob947.dll O2 - BHO: SWEETIE Class - {1A0AADCD-3A72-4b5f-900F-E3BB5A838E2A} - C:\PROGRA~1\MACROG~1\SWEETI~1\toolbar.dll O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file) O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll O2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll O2 - BHO: Google Toolbar Notifier BHO - {af69de43-7d58-4638-b6fa-ce66b5ad205d} - C:\Program Files\Google\GoogleToolbarNotifier\3.1.807.1746\swg.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll O2 - BHO: EpsonToolBandKicker Class - {E99421FB-68DD-40F0-B4AC-B7027CAE2F1A} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll O3 - Toolbar: EPSON Web-To-Page - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" /hide /waitservice O4 - HKLM\..\Run: [XeroxScannerDaemon] C:\Program Files\Xerox\NWWia\XrxFTPLt.exe O4 - HKLM\..\Run: [VX3000] C:\WINDOWS\vVX3000.exe O4 - HKLM\..\Run: [TrackPointSrv] tp4mon.exe O4 - HKLM\..\Run: [symantec NetDriver Monitor] C:\PROGRA~1\SYMNET~1\SNDMon.exe /Consumer O4 - HKLM\..\Run: [sMSERIAL] sm56hlpr.exe O4 - HKLM\..\Run: [siSPower] Rundll32.exe SiSPower.dll,ModeAgent O4 - HKLM\..\Run: [schedule_d] "C:\Program Files\DVBT Application\Schedule_d.exe" O4 - HKLM\..\Run: [PHIME2002ASync] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC O4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName O4 - HKLM\..\Run: [MSPY2002] C:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe /SYNC O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe O4 - HKLM\..\Run: [soundMan] SOUNDMAN.EXE O4 - HKLM\..\Run: [ORAHSSSessionManager] C:\Program Files\OrangeHSS\SessionManager\SessionManager.exe O4 - HKLM\..\Run: [iMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32 O4 - HKLM\..\Run: [eRecoveryService] C:\Acer\Empowering Technology\eRecovery\Monitor.exe O4 - HKLM\..\Run: [EPSON Stylus CX3600 Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATI9BE.EXE /P26 "EPSON Stylus CX3600 Series" /O6 "USB001" /M "Stylus CX3600" O4 - HKLM\..\Run: [bluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime O4 - HKLM\..\Run: [Malwarebytes Anti-Malware (reboot)] "C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe" /runcleanupscript O4 - HKCU\..\Run: [EPSON Stylus CX3600 Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATI9BE.EXE /P26 "EPSON Stylus CX3600 Series" /M "Stylus CX3600" /EF "HKCU" O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background O4 - HKLM\..\Policies\Explorer\Run: [59t4] C:\DOCUME~1\alex\LOCALS~1\Temp\1biq.exe O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SERVICE RÉSEAU') O4 - HKUS\S-1-5-20\..\Run: [OrangePlayer] c:\program files\orange\media player\Media Player.exe /systray (User 'SERVICE RÉSEAU') O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user') O4 - Startup: Microsoft Recherche accélérée.lnk = C:\Program Files\Microsoft Office\Office\FINDFAST.EXE O4 - Startup: OneNote 2007 - Capture d'écran et lancement.lnk = C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE O4 - Global Startup: DSLMON.lnk = C:\Program Files\SAGEM\SAGEM F@st 800-840\dslmon.exe O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000 O9 - Extra button: PMU Poker - {06568ceb-5721-47d4-9d93-7e604fcbaeab} - C:\Program Files\PMU\PMUPoker\RunApp.exe O9 - Extra 'Tools' menuitem: PMU Poker - {06568ceb-5721-47d4-9d93-7e604fcbaeab} - C:\Program Files\PMU\PMUPoker\RunApp.exe O9 - Extra button: Antivirus Internet - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\scieplugin.dll O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra button: Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll O9 - Extra 'Tools' menuitem: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {fb5f1910-f110-11d2-bb9e-00c04f795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {fb5f1910-f110-11d2-bb9e-00c04f795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra button: Wanadoo - {1462651F-F4BA-4C76-A001-C4284D0FE16E} - Orange : téléphones, forfaits mobiles, Internet, actualité, sport, video (file missing) (HKCU) O15 - Trusted Zone: Caisse de Congés Payés du Bâtiment 16° Région - FOREZ - VELAY - VIVARAIS O16 - DPF: {02BCC737-B171-4746-94C9-0D8A0B2C0089} (Microsoft Office Template and Media Control) - http://office2010.microsoft.com/sites/production/ieawsdc32.cab O16 - DPF: {0cca191d-13a6-4e29-b746-314dee697d83} (Facebook Photo Uploader 5 Control) - Page introuvable | Facebook O16 - DPF: {104B0A37-AB99-4F06-8032-8BBDC3B77DDB} (Telechargement Control) - http://www.photoweb.fr/telechargement/Photoweb_Uploader.cab O16 - DPF: {1FF43AD5-2262-4C2F-81D4-26D710C3F305} (VB2S Mannequin Virtuel Control) - http://mannequin.redoute.fr/activex/Mannequin.cab O16 - DPF: {2472565F-E27A-11D9-ADFE-00062919A34C} (ActiveXUploadDiscount.UserControl1) - http://www.fotodiscount.com/activeX/newUploadDiscount.CAB O16 - DPF: {3E82BB3F-ABE4-458D-9281-0187286A4E51} (VoxsyncCtrl Class) - Portail Orange O16 - DPF: {406B5949-7190-4245-91A9-30A17DE16AD0} (Snapfish Activia) - http://www3.snapfish.fr/SnapfishActivia.cab O16 - DPF: {41ACD49D-1974-791A-0981-AA9872721044} (Ganymede Board Games) - http://67.15.101.33/g_bin/eng/boards_2_0_0_35.cab O16 - DPF: {5D637FAD-E202-48D1-8F18-5B9C459BD1E3} (Image Uploader Control) - http://express.foto.com/ImageUploader5.cab O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.cab O16 - DPF: {6218F7B5-0D3A-48BA-AE4C-49DCFA63D400} (CSEQueryObject Object) - http://www.myheritage.fr/Genoogle/Components/ActiveX/SearchEngineQuery.dll O16 - DPF: {6D2EF4B4-CB62-4C0B-85F3-B79C236D702C} (ContactExtractor Class) - http://www.facebook.com/controls/contactx.dll O16 - DPF: {6E5E167B-1566-4316-B27F-0DDAB3484CF7} (Image Uploader Control) - http://www.mypix.com/importer/ImageUploader4.cab O16 - DPF: {7E980B9B-8AE5-466A-B6D6-DA8CF814E78A} (MJLauncherCtrl Class) - http://gamenextfr.oberon-media.com/online/online2/luxor_amun_rising/mjolauncher.cab O16 - DPF: {8100D56A-5661-482C-BEE8-AFECE305D968} (Facebook Photo Uploader 5 Control) - http://upload.facebook.com/controls/2009.07.28_v5.5.8.1/FacebookPhotoUploader55.cab O16 - DPF: {9DF1C00D-8426-4337-972C-DC042D19A916} (FTMediaPlayer Class) - http://webtv.guidetv.orange.fr/resources/OCS_9418.cab O16 - DPF: {A18962F6-E6ED-40B1-97C9-1FB36F38BFA8} (Aurigma Image Uploader 3.5 Control) - http://www.girafoto.fr/uploaders/ImageUploader3.cab O16 - DPF: {A73BAEFA-EE65-494D-BEDB-DD3E5A34FA98} (Image Uploader) - http://www.extrafilm.fr/ImageUploader4.cab O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (MSN Games - Installer) - http://messenger.zone.msn.com/binary/ZIntro.cab56649.cab O16 - DPF: {BFF1950D-B1B4-4AE8-B842-B2CCF06D9A1B} (Zylom Games Player) - http://game07.zylom.com/activex/zylomgamesplayer.cab O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab O16 - DPF: {CE3409C4-9E26-4F8E-83E4-778498F9E7B4} (PB_Uploader Class) - Developpement photo, tirage photo numerique et impressions - PhotoBox O16 - DPF: {CE69F98F-2AF3-4306-BAC6-A79070EDA1B4} (Zylom Loader Object) - http://eu.download.games.yahoo.com/zylom/activex/zylomloader.cab O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab O16 - DPF: {D4323BF2-006A-4440-A2F5-27E3E7AB25F8} (Virtools WebPlayer Class) - http://3dlifeplayer.dl.3dvia.com/player/install/installer.exe O16 - DPF: {D8089245-3211-40F6-819B-9E5E92CD61A2} (FlashXControl Object) - https://signin3.valueactive.com/Register/Branding/olr3313/OCX/v1018/flashax.cab O16 - DPF: {D821DC4A-0814-435E-9820-661C543A4679} (CRLDownloadWrapper Class) - http://drmlicense.one.microsoft.com/crlupdate/en/crlocx.ocx O16 - DPF: {DEB21AD3-FDA4-42F6-B57D-EE696A675EE8} (IPSUploader Control) - http://asp06.photoprintit.de/microsite/3462/defaults/activex/IPSUploader.cab O16 - DPF: {DF780F87-FF2B-4DF8-92D0-73DB16A1543A} (PopCapLoader Object) - http://www.popcap.com/webgames/popcaploader_v10_fr.cab O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab O16 - DPF: {FF1CD9A3-00CD-45C1-8182-4EEC229A182D} (Plaxo Auto-Import Utility) - https://www.plaxo.com/activex/plx_upldr-2k-xp.cab O17 - HKLM\System\CS1\Services\Tcpip\Parameters: NameServer = 93.188.162.127,93.188.161.217 O17 - HKLM\System\CS1\Services\Tcpip\..\{36B260F4-917F-4594-9C7C-836C1A8BE05E}: NameServer = 93.188.162.127,93.188.161.217 O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll O23 - Service: Eset HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe O23 - Service: Eset Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe -- End of file - 13035 bytes

alors pour le fichier log c'est ça : © CJoint.com, 2008 mais pas d'info dans la barre des taches désolé :-S

alors le rapport TDSSKiller ca donne : 2010/09/14 22:18:04.0734 TDSS rootkit removing tool 2.4.2.1 Sep 7 2010 14:43:44 2010/09/14 22:18:04.0734 ================================================================================ 2010/09/14 22:18:04.0734 SystemInfo: 2010/09/14 22:18:04.0734 2010/09/14 22:18:04.0734 OS Version: 5.1.2600 ServicePack: 3.0 2010/09/14 22:18:04.0734 Product type: Workstation 2010/09/14 22:18:04.0734 ComputerName: ACER-FE8B363750 2010/09/14 22:18:04.0734 UserName: alex 2010/09/14 22:18:04.0734 Windows directory: C:\WINDOWS 2010/09/14 22:18:04.0734 System windows directory: C:\WINDOWS 2010/09/14 22:18:04.0734 Processor architecture: Intel x86 2010/09/14 22:18:04.0734 Number of processors: 1 2010/09/14 22:18:04.0734 Page size: 0x1000 2010/09/14 22:18:04.0734 Boot type: Safe boot 2010/09/14 22:18:04.0734 ================================================================================ 2010/09/14 22:18:05.0125 Initialize success 2010/09/14 22:18:14.0593 ================================================================================ 2010/09/14 22:18:14.0593 Scan started 2010/09/14 22:18:14.0593 Mode: Manual; 2010/09/14 22:18:14.0593 ================================================================================ 2010/09/14 22:18:24.0671 7d0a1a2a (84e3b8104be9e81f8536ace64d552071) C:\WINDOWS\System32\drivers\7d0a1a2a.sys 2010/09/14 22:18:39.0859 ACPI (e5e6dbfc41ea8aad005cb9a57a96b43b) C:\WINDOWS\system32\DRIVERS\ACPI.sys 2010/09/14 22:18:40.0828 ACPIEC (e4abc1212b70bb03d35e60681c447210) C:\WINDOWS\system32\drivers\ACPIEC.sys 2010/09/14 22:18:44.0203 ADILOADER (2b3b8c0a2c979dd77ba6dc9376074854) C:\WINDOWS\system32\Drivers\adildr.sys 2010/09/14 22:18:47.0781 adiusbaw (d478c566318803a7063b120f026dc0b7) C:\WINDOWS\system32\DRIVERS\adiusbaw.sys 2010/09/14 22:18:54.0359 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys 2010/09/14 22:18:57.0875 AegisP (15e655baa989444f56787ef558823643) C:\WINDOWS\system32\DRIVERS\AegisP.sys 2010/09/14 22:19:02.0015 AF15BDA (639a9c2dab390769be8fa23854435876) C:\WINDOWS\system32\Drivers\AF15BDA.sys 2010/09/14 22:19:06.0234 Afc (a7b8a3a79d35215d798a300df49ed23f) C:\WINDOWS\system32\drivers\Afc.sys 2010/09/14 22:19:09.0140 AFD (7e775010ef291da96ad17ca4b17137d7) C:\WINDOWS\System32\drivers\afd.sys 2010/09/14 22:19:25.0078 alcan5wn (0940030d5a5869067ccc03e3b0b8dec7) C:\WINDOWS\system32\DRIVERS\alcan5wn.sys 2010/09/14 22:19:26.0156 alcaudsl (4c9577888c53243e2991456f510488a1) C:\WINDOWS\system32\DRIVERS\alcaudsl.sys 2010/09/14 22:19:28.0218 ALCXWDM (92ae420be14b0d97d14dac4aba22a702) C:\WINDOWS\system32\drivers\ALCXWDM.SYS 2010/09/14 22:19:57.0109 Aspi32 (5b01af89d16d562825c4db4530f20cbb) C:\WINDOWS\system32\drivers\aspi32.sys 2010/09/14 22:19:58.0062 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys 2010/09/14 22:19:59.0625 atapi (84f57ae423cce618a8e89387e1e61aaa) C:\WINDOWS\system32\DRIVERS\atapi.sys 2010/09/14 22:19:59.0625 Suspicious file (Forged): C:\WINDOWS\system32\DRIVERS\atapi.sys. Real md5: 84f57ae423cce618a8e89387e1e61aaa, Fake md5: 9f3a2f5aa6875c72bf062c712cfa2674 2010/09/14 22:19:59.0687 atapi - detected Rootkit.Win32.TDSS.tdl3 (0) 2010/09/14 22:20:05.0859 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys 2010/09/14 22:20:08.0046 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys 2010/09/14 22:20:12.0234 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys 2010/09/14 22:20:12.0890 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys 2010/09/14 22:20:14.0562 CCDECODE (0be5aef125be881c4f854c554f2b025c) C:\WINDOWS\system32\DRIVERS\CCDECODE.sys 2010/09/14 22:20:23.0171 CdaD10BA (841cefab8228ee691705d059e7f21c47) C:\WINDOWS\system32\drivers\CdaD10BA.SYS 2010/09/14 22:20:23.0609 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys 2010/09/14 22:20:24.0859 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys 2010/09/14 22:20:25.0890 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys 2010/09/14 22:20:51.0828 Disk (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys 2010/09/14 22:20:53.0171 dmboot (f5deadd42335fb33edca74ecb2f36cba) C:\WINDOWS\system32\drivers\dmboot.sys 2010/09/14 22:20:54.0875 dmio (5a7c47c9b3f9fb92a66410a7509f0c71) C:\WINDOWS\system32\drivers\dmio.sys 2010/09/14 22:20:55.0312 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys 2010/09/14 22:20:56.0421 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys 2010/09/14 22:21:02.0843 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys 2010/09/14 22:21:06.0984 eamon (7a25ad652a3003b8854e873a3324e672) C:\WINDOWS\system32\DRIVERS\eamon.sys 2010/09/14 22:21:10.0984 easdrv (c7c17bc80b7264322207abc31f20ea84) C:\WINDOWS\system32\DRIVERS\easdrv.sys 2010/09/14 22:21:15.0093 epfw (28c76f783ebddb71643b8bc0821779f0) C:\WINDOWS\system32\DRIVERS\epfw.sys 2010/09/14 22:21:19.0187 Epfwndis (711c459909e10659f4a0456ea10e2a51) C:\WINDOWS\system32\DRIVERS\Epfwndis.sys 2010/09/14 22:21:23.0281 epfwtdi (630a3f48f5d211fcfc16f1dd9e4a8580) C:\WINDOWS\system32\DRIVERS\epfwtdi.sys 2010/09/14 22:21:24.0593 Fastfat (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys 2010/09/14 22:21:25.0218 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\drivers\Fdc.sys 2010/09/14 22:21:26.0578 Fips (31f923eb2170fc172c81abda0045d18c) C:\WINDOWS\system32\drivers\Fips.sys 2010/09/14 22:21:28.0015 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\drivers\Flpydisk.sys 2010/09/14 22:21:30.0312 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\drivers\fltmgr.sys 2010/09/14 22:21:33.0968 fssfltr (c6ee3a87fe609d3e1db9dbd072a248de) C:\WINDOWS\system32\DRIVERS\fssfltr_tdi.sys 2010/09/14 22:21:34.0468 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys 2010/09/14 22:21:34.0906 Ftdisk (a86859b77b908c18c2657f284aa29fe3) C:\WINDOWS\system32\DRIVERS\ftdisk.sys 2010/09/14 22:21:43.0750 giveio (77ebf3e9386daa51551af429052d88d0) C:\WINDOWS\system32\giveio.sys 2010/09/14 22:21:44.0828 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys 2010/09/14 22:21:46.0359 hidusb (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys 2010/09/14 22:21:54.0765 HTTP (f80a415ef82cd06ffaf0d971528ead38) C:\WINDOWS\system32\Drivers\HTTP.sys 2010/09/14 22:22:05.0984 i8042prt (a09bdc4ed10e3b2e0ec27bb94af32516) C:\WINDOWS\system32\DRIVERS\i8042prt.sys 2010/09/14 22:22:07.0406 Imapi (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\DRIVERS\imapi.sys 2010/09/14 22:22:23.0343 intelppm (ad340800c35a42d4de1641a37feea34c) C:\WINDOWS\system32\DRIVERS\intelppm.sys 2010/09/14 22:22:25.0500 Ip6Fw (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\drivers\ip6fw.sys 2010/09/14 22:22:26.0171 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys 2010/09/14 22:22:27.0468 IpInIp (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys 2010/09/14 22:22:28.0843 IpNat (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys 2010/09/14 22:22:30.0234 IPSec (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys 2010/09/14 22:22:31.0187 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys 2010/09/14 22:22:32.0515 isapnp (355836975a67b6554bca60328cd6cb74) C:\WINDOWS\system32\DRIVERS\isapnp.sys 2010/09/14 22:22:33.0859 Kbdclass (16813155807c6881f4bfbf6657424659) C:\WINDOWS\system32\DRIVERS\kbdclass.sys 2010/09/14 22:22:35.0109 kbdhid (94c59cb884ba010c063687c3a50dce8e) C:\WINDOWS\system32\DRIVERS\kbdhid.sys 2010/09/14 22:22:39.0078 kl1 (bc02a8e0dd5dc266e5cc3636dd454403) C:\WINDOWS\system32\drivers\kl1.sys 2010/09/14 22:22:43.0015 klif (f0653e5e164123cad51edda22418c2a3) C:\WINDOWS\system32\drivers\klif.sys 2010/09/14 22:22:44.0406 kmixer (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys 2010/09/14 22:22:46.0000 KSecDD (b467646c54cc746128904e1654c750c1) C:\WINDOWS\system32\drivers\KSecDD.sys 2010/09/14 22:22:56.0562 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys 2010/09/14 22:22:57.0828 Modem (510ade9327fe84c10254e1902697e25f) C:\WINDOWS\system32\drivers\Modem.sys 2010/09/14 22:22:58.0875 Mouclass (027c01bd7ef3349aaebc883d8a799efb) C:\WINDOWS\system32\DRIVERS\mouclass.sys 2010/09/14 22:23:02.0406 mouhid (124d6846040c79b9c997f78ef4b2a4e5) C:\WINDOWS\system32\DRIVERS\mouhid.sys 2010/09/14 22:23:03.0578 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys 2010/09/14 22:23:04.0765 MPE (c0f8e0c2c3c0437cf37c6781896dc3ec) C:\WINDOWS\system32\DRIVERS\MPE.sys 2010/09/14 22:23:10.0671 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys 2010/09/14 22:23:13.0687 MRxSmb (f3aefb11abc521122b67095044169e98) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys 2010/09/14 22:23:15.0078 Msfs (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys 2010/09/14 22:23:16.0265 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys 2010/09/14 22:23:17.0328 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys 2010/09/14 22:23:18.0406 MSPQM (bad59648ba099da4a17680b39730cb3d) C:\WINDOWS\system32\drivers\MSPQM.sys 2010/09/14 22:23:20.0531 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys 2010/09/14 22:23:21.0578 MSTEE (e53736a9e30c45fa9e7b5eac55056d1d) C:\WINDOWS\system32\drivers\MSTEE.sys 2010/09/14 22:23:22.0687 Mup (2f625d11385b1a94360bfc70aaefdee1) C:\WINDOWS\system32\drivers\Mup.sys 2010/09/14 22:23:23.0750 NABTSFEC (5b50f1b2a2ed47d560577b221da734db) C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys 2010/09/14 22:23:27.0500 NAVAP (73b339a311dc4e6426900ea8ad1812a5) C:\WINDOWS\system32\Drivers\navap.sys 2010/09/14 22:23:28.0015 NDIS (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys 2010/09/14 22:23:28.0968 NdisIP (7ff1f1fd8609c149aa432f95a8163d97) C:\WINDOWS\system32\DRIVERS\NdisIP.sys 2010/09/14 22:23:29.0765 NdisTapi (1ab3d00c991ab086e69db84b6c0ed78f) C:\WINDOWS\system32\DRIVERS\ndistapi.sys 2010/09/14 22:23:30.0578 Ndisuio (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys 2010/09/14 22:23:31.0078 NdisWan (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys 2010/09/14 22:23:31.0609 NDProxy (6215023940cfd3702b46abc304e1d45a) C:\WINDOWS\system32\drivers\NDProxy.sys 2010/09/14 22:23:31.0984 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys 2010/09/14 22:23:36.0812 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS\netbt.sys 2010/09/14 22:23:40.0000 NPF (b9730495e0cf674680121e34bd95a73b) C:\WINDOWS\system32\drivers\NPF.sys 2010/09/14 22:23:44.0796 Npfs (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys 2010/09/14 22:23:49.0750 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys 2010/09/14 22:23:52.0000 NTIDrvr (7f1c1f78d709c4a54cbb46ede7e0b48d) C:\WINDOWS\system32\DRIVERS\NTIDrvr.sys 2010/09/14 22:23:52.0546 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys 2010/09/14 22:23:53.0187 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys 2010/09/14 22:23:53.0921 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys 2010/09/14 22:23:58.0796 Parport (8fd0bdbea875d06ccf6c945ca9abaf75) C:\WINDOWS\system32\DRIVERS\parport.sys 2010/09/14 22:24:03.0484 PartMgr (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys 2010/09/14 22:24:04.0046 ParVdm (9575c5630db8fb804649a6959737154c) C:\WINDOWS\system32\drivers\ParVdm.sys 2010/09/14 22:24:32.0890 pcampr5 (b670c5d89f0726b7a2a7dfb4e968cdf8) C:\WINDOWS\system32\PCAMPR5.SYS 2010/09/14 22:25:01.0421 pcandis5 (ecd2f9d67b06606064daf6961a6d5efe) C:\WINDOWS\system32\PCANDIS5.SYS 2010/09/14 22:25:06.0140 PCI (043410877bda580c528f45165f7125bc) C:\WINDOWS\system32\DRIVERS\pci.sys 2010/09/14 22:25:11.0890 PCIIde (f4bfde7209c14a07aaa61e4d6ae69eac) C:\WINDOWS\system32\DRIVERS\pciide.sys 2010/09/14 22:25:16.0562 Pcmcia (f0406cbc60bdb0394a0e17ffb04cdd3d) C:\WINDOWS\system32\drivers\Pcmcia.sys 2010/09/14 22:25:54.0859 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys 2010/09/14 22:25:59.0578 PSched (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys 2010/09/14 22:26:00.0078 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys 2010/09/14 22:26:03.0718 PxHelp20 (d86b4a68565e444d76457f14172c875a) C:\WINDOWS\system32\Drivers\PxHelp20.sys 2010/09/14 22:26:28.0015 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys 2010/09/14 22:26:32.0656 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys 2010/09/14 22:26:37.0406 RasPppoe (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys 2010/09/14 22:26:37.0859 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys 2010/09/14 22:26:42.0484 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys 2010/09/14 22:26:43.0000 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys 2010/09/14 22:26:47.0671 RDPWD (6728e45b66f93c08f11de2e316fc70dd) C:\WINDOWS\system32\drivers\RDPWD.sys 2010/09/14 22:26:52.0343 redbook (d8eb2a7904db6c916eb5361878ddcbae) C:\WINDOWS\system32\DRIVERS\redbook.sys 2010/09/14 22:26:53.0250 rootmodem (d8b0b4ade32574b2d9c5cc34dc0dbbe7) C:\WINDOWS\system32\Drivers\RootMdm.sys 2010/09/14 22:26:57.0015 RT73 (c7bcf9808e2a1b4cabe16ff7fbce5fab) C:\WINDOWS\system32\DRIVERS\rt73.sys 2010/09/14 22:27:01.0187 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys 2010/09/14 22:27:05.0750 serenum (0f29512ccd6bead730039fb4bd2c85ce) C:\WINDOWS\system32\DRIVERS\serenum.sys 2010/09/14 22:27:10.0343 Serial (93d313c31f7ad9ea2b75f26075413c7c) C:\WINDOWS\system32\DRIVERS\serial.sys 2010/09/14 22:27:14.0796 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\drivers\Sfloppy.sys 2010/09/14 22:27:22.0421 SiS315 (e3cf27c168a97018c9f9c7ecc335a761) C:\WINDOWS\system32\DRIVERS\sisgrp.sys 2010/09/14 22:27:25.0078 SiSkp (e14435cf5d555bdc2f35097e403b79c5) C:\WINDOWS\system32\DRIVERS\srvkp.sys 2010/09/14 22:27:27.0625 SISNIC (8204c49cde112f7b9c2f15707fe2cc5a) C:\WINDOWS\system32\DRIVERS\sisnic.sys 2010/09/14 22:27:32.0156 SLIP (866d538ebe33709a5c9f5c62b73b7d14) C:\WINDOWS\system32\DRIVERS\SLIP.sys 2010/09/14 22:27:41.0343 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys 2010/09/14 22:27:45.0937 sr (39626e6dc1fb39434ec40c42722b660a) C:\WINDOWS\system32\DRIVERS\sr.sys 2010/09/14 22:27:47.0781 Srv (da852e3e0bf1cea75d756f9866241e57) C:\WINDOWS\system32\DRIVERS\srv.sys 2010/09/14 22:27:50.0859 st330 (c9fa6a70c051fc59d22c2e4cd211ad9b) C:\WINDOWS\system32\drivers\st330.sys 2010/09/14 22:27:53.0796 stbus (0017202eb0224f82706f04ed35ab23c2) C:\WINDOWS\system32\drivers\stbus.sys 2010/09/14 22:27:56.0765 steth (fc2f19d742f84d2cff728f20529cbb30) C:\WINDOWS\system32\DRIVERS\steth.sys 2010/09/14 22:28:01.0281 streamip (77813007ba6265c4b6098187e6ed79d2) C:\WINDOWS\system32\DRIVERS\StreamIP.sys 2010/09/14 22:28:05.0765 swenum (3941d127aef12e93addf6fe6ee027e0f) C:\WINDOWS\system32\DRIVERS\swenum.sys 2010/09/14 22:28:10.0296 swmidi (8ce882bcc6cf8a62f2b2323d95cb3d01) C:\WINDOWS\system32\drivers\swmidi.sys 2010/09/14 22:28:23.0750 SYMREDRV (7c73b65f1bdfab9052a5076c0ca622de) C:\WINDOWS\System32\Drivers\SYMREDRV.SYS 2010/09/14 22:28:27.0687 SYMTDI (b4562798891dca27ed67ca07acbadbd9) C:\WINDOWS\System32\Drivers\SYMTDI.SYS 2010/09/14 22:28:41.0718 sysaudio (8b83f3ed0f1688b4958f77cd6d2bf290) C:\WINDOWS\system32\drivers\sysaudio.sys 2010/09/14 22:28:44.0765 Tcpip (9aefa14bd6b182d61e3119fa5f436d3d) C:\WINDOWS\system32\DRIVERS\tcpip.sys 2010/09/14 22:28:49.0265 TDPIPE (6471a66807f5e104e4885f5b67349397) C:\WINDOWS\system32\drivers\TDPIPE.sys 2010/09/14 22:28:53.0484 TDTCP (c56b6d0402371cf3700eb322ef3aaf61) C:\WINDOWS\system32\drivers\TDTCP.sys 2010/09/14 22:28:57.0718 TermDD (88155247177638048422893737429d9e) C:\WINDOWS\system32\DRIVERS\termdd.sys 2010/09/14 22:29:04.0515 uagp35 (d85938f272d1bcf3db3a31fc0a048928) C:\WINDOWS\system32\DRIVERS\uagp35.sys 2010/09/14 22:29:06.0578 UBHelper (e0c67be430c6de490d6ccaecfa071f9e) C:\WINDOWS\system32\drivers\UBHelper.sys 2010/09/14 22:29:10.0984 Udfs (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINDOWS\system32\drivers\Udfs.sys 2010/09/14 22:29:17.0750 Update (402ddc88356b1bac0ee3dd1580c76a31) C:\WINDOWS\system32\DRIVERS\update.sys 2010/09/14 22:29:22.0265 usbaudio (e919708db44ed8543a7c017953148330) C:\WINDOWS\system32\drivers\usbaudio.sys 2010/09/14 22:29:26.0593 usbccgp (173f317ce0db8e21322e71b7e60a27e8) C:\WINDOWS\system32\DRIVERS\usbccgp.sys 2010/09/14 22:29:28.0453 usbehci (65dcf09d0e37d4c6b11b5b0b76d470a7) C:\WINDOWS\system32\DRIVERS\usbehci.sys 2010/09/14 22:29:32.0796 usbhub (1ab3cdde553b6e064d2e754efe20285c) C:\WINDOWS\system32\DRIVERS\usbhub.sys 2010/09/14 22:29:36.0984 usbohci (0daecce65366ea32b162f85f07c6753b) C:\WINDOWS\system32\DRIVERS\usbohci.sys 2010/09/14 22:29:41.0265 usbprint (a717c8721046828520c9edf31288fc00) C:\WINDOWS\system32\DRIVERS\usbprint.sys 2010/09/14 22:29:45.0359 usbscan (a0b8cf9deb1184fbdd20784a58fa75d4) C:\WINDOWS\system32\DRIVERS\usbscan.sys 2010/09/14 22:29:49.0593 USBSTOR (a32426d9b14a089eaa1d922e0c5801a9) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS 2010/09/14 22:29:53.0828 VgaSave (0d3a8fafceacd8b7625cd549757a7df1) C:\WINDOWS\System32\drivers\vga.sys 2010/09/14 22:30:02.0703 VolSnap (46de1126684369bace4849e4fc8c43ca) C:\WINDOWS\system32\drivers\VolSnap.sys 2010/09/14 22:30:07.0234 VX3000 (45798ec03c6aeb45aa2f2084f7842f6c) C:\WINDOWS\system32\DRIVERS\VX3000.sys 2010/09/14 22:30:11.0875 w300bus (d4baa1ac8dcea1382e81aa6fe48cdd7c) C:\WINDOWS\system32\DRIVERS\w300bus.sys 2010/09/14 22:30:15.0906 w300mdfl (12d415ab0ddd86c42cdc5f120a381f24) C:\WINDOWS\system32\DRIVERS\w300mdfl.sys 2010/09/14 22:30:19.0843 w300mdm (f470d5e61ee7f951883f70d676551c89) C:\WINDOWS\system32\DRIVERS\w300mdm.sys 2010/09/14 22:30:23.0859 w300mgmt (1b575b7384e22f5b278d3d7fc1bae682) C:\WINDOWS\system32\DRIVERS\w300mgmt.sys 2010/09/14 22:30:27.0843 w300obex (a2bc36924ae02ca1e01ec39c99afea09) C:\WINDOWS\system32\DRIVERS\w300obex.sys 2010/09/14 22:30:32.0093 Wanarp (e20b95baedb550f32dd489265c1da1f6) C:\WINDOWS\system32\DRIVERS\wanarp.sys 2010/09/14 22:30:40.0984 wdmaud (6768acf64b18196494413695f0c3a00f) C:\WINDOWS\system32\drivers\wdmaud.sys 2010/09/14 22:30:45.0593 WSTCODEC (c98b39829c2bbd34e454150633c62c78) C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS 2010/09/14 22:30:49.0203 WudfPf (f15feafffbb3644ccc80c5da584e6311) C:\WINDOWS\system32\DRIVERS\WudfPf.sys 2010/09/14 22:30:52.0953 WudfRd (28b524262bce6de1f7ef9f510ba3985b) C:\WINDOWS\system32\DRIVERS\wudfrd.sys 2010/09/14 22:30:53.0437 ================================================================================ 2010/09/14 22:30:53.0437 Scan finished 2010/09/14 22:30:53.0437 ================================================================================ 2010/09/14 22:30:53.0546 Detected object count: 1 2010/09/14 22:32:11.0687 atapi (84f57ae423cce618a8e89387e1e61aaa) C:\WINDOWS\system32\DRIVERS\atapi.sys 2010/09/14 22:32:11.0687 Suspicious file (Forged): C:\WINDOWS\system32\DRIVERS\atapi.sys. Real md5: 84f57ae423cce618a8e89387e1e61aaa, Fake md5: 9f3a2f5aa6875c72bf062c712cfa2674 2010/09/14 22:32:22.0546 Backup copy found, using it.. 2010/09/14 22:32:22.0593 C:\WINDOWS\system32\DRIVERS\atapi.sys - will be cured after reboot 2010/09/14 22:32:22.0593 Rootkit.Win32.TDSS.tdl3(atapi) - User select action: Cure 2010/09/14 22:32:34.0593 Deinitialize success j'avoue je comprend pas grand chose @+ et en attente de te lire

ok ok promis je recommencerais plus mes betises ! desolé (cela dit j'ai fait pas mal de truc avant de vous contacter, j'espere que ca ne pertubera pas trop :S ) bon alors j'ecoute scrupuleusement et je lance TDSSKiller ! je post dès que j'ai le rapport merci mille fois de m'aider, je n'ai plus beaucoup de cheveux sur la tete a force de me les arracher ! il est evident que je suis plus douée niveau desinfection des humains lol ! bon a de suite avec le rapport

bon en desespoir de cause je viens de lancer AD-R ! je post le rapport dès emission ... je l'aurais un jour je l'aurais cette bestiole lol

j'ai l'impression d'etre seule au monde devant mon pc c'est horrible. je colle quand meme le dernier rapport en date peut etre que quelqu'un entendra mon desespoir à force Rapport de ZHPDiag v1.26.622 par Nicolas Coolman, Update du 14/09/2010 Run by alex at 14/09/2010 20:37:03 Web site : ZHPDiag Outil de diagnostic Contact : nicolascoolman@yahoo.fr ---\\ Web Browser MSIE: Internet Explorer v8.0.6001.18702 MFIE: Mozilla Firefox (3.0.19) ---\\ System Information Platform : Microsoft Windows XP (5.1.2600) Service Pack 3 Processor: x86 Family 15 Model 4 Stepping 9, GenuineIntel Operating System: 32 Bits Boot mode: Sans échec (Fail-safe boot) Total RAM: 479 MB (36% free) System drive C: has 5 GB (6%) free of 72 GB ---\\ Logged in mode Computer Name: ACER-FE8B363750 User Name: alex All Users Names: SUPPORT_388945a0, HelpAssistant, ASPNET, alex, Administrateur, Unselected Option: O1,O45,O61,O65,O82 Logged in as Administrator ---\\ DOS/Devices C:\ Hard drive, Flash drive, Thumb drive (Free 5 Go of 72 Go) D:\ Hard drive, Flash drive, Thumb drive (Free 53 Go of 73 Go) E:\ CD-ROM drive (Free 0 Go of 4 Go) F:\ Floppy drive, Flash card reader, USB Key (Not Inserted) G:\ Floppy drive, Flash card reader, USB Key (Not Inserted) H:\ Floppy drive, Flash card reader, USB Key (Not Inserted) I:\ Floppy drive, Flash card reader, USB Key (Not Inserted) J:\ CD-ROM drive (Free 0 Go of 0 Go) K:\ Floppy drive, Flash card reader, USB Key (Free 0 Go of 4 Go) ---\\ Security Center & Tools Informations [HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center] AntiVirusDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Security Center] FirewallDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Security Center] FirewallOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center] UpdatesDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiSpywareOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] AntiVirusDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] FirewallOverride: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] UpdatesDisableNotify: OK [HKLM\SOFTWARE\Microsoft\Security Center\Svc] UacDisableNotify: OK ---\\ Processus lancés [MD5.D594EA4AC1C0E4675EF2F0063950ABEF] - (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe [1090952] [MD5.C3EFA69E06AA8C5B420D8FB19E47A5EC] - (.Pas de propriétaire - LaunchPad Application.) -- C:\Documents and Settings\alex\Application Data\U3\07749007E3403C43\LaunchPad.exe [4661248] [MD5.AB5A269E87C7762999E14EF06DEE4C54] - (.Nicolas Coolman - Diagnostic Tool.) -- C:\Program Files\ZHPDiag\ZHPDiag.exe [586240] ---\\ Plugins de navigateurs Opera/Firefox(P1/P2) P2 - FPN:Firefox Plugin Navigator . (.DivX,Inc. - DivX Web Player version 1.4.0.233.) -- C:\Program Files\Mozilla Firefox\Plugins\npdivx32.dll P2 - FPN:Firefox Plugin Navigator . (.Zylom - Zylom Plugin.) -- C:\Program Files\Mozilla Firefox\Plugins\npzylomgamesplayer.dll P2 - FPN:Firefox Plugin Navigator . (.Sun Microsystems, Inc. - Java Platform SE binary.) -- C:\Program Files\Mozilla Firefox\Plugins\npdeploytk.dll P2 - FPN:Firefox Plugin Navigator . (.Microsoft Corporation - Office Plugin for Netscape Navigator.) -- C:\Program Files\Mozilla Firefox\Plugins\NPOFF12.DLL P2 - FPN:Firefox Plugin Navigator . (.RealNetworks, Inc. - 6.0.12.448.) -- C:\Program Files\Mozilla Firefox\Plugins\nprpjplug.dll P2 - FPN:Firefox Plugin Navigator . (.RealNetworks, Inc. - RealPlayer LiveConnect-Enabled Plug-In.) -- C:\Program Files\Mozilla Firefox\Plugins\nppl3260.dll P2 - FPN:Firefox Plugin Navigator . (.RealNetworks, Inc. - RealJukebox Netscape Plugin.) -- C:\Program Files\Mozilla Firefox\Plugins\nprjplug.dll P2 - FPN:Firefox Plugin Navigator . (.mozilla.org - Default Plug-in.) -- C:\Program Files\Mozilla Firefox\Plugins\npnul32.dll P2 - FPN: [HKLM] [@divx.com/DivX Browser Plugin,version=1.0.0] - (.DivX,Inc. - DivX Web Player version 1.4.0.233.) -- C:\Program Files\DivX\DivX Web Player\npdivx32.dll P2 - FPN: [HKLM] [@divx.com/DivX Content Upload Plugin,version=1.0.0] - (.DivX,Inc. - DivX® Content Upload Plugin.) -- C:\Program Files\DivX\DivX Content Uploader\npUpload.dll P2 - FPN: [HKLM] [@divx.com/DivX Player Plugin,version=1.0.0] - (.DivX, Inc - npdivxplayerplugin.) -- C:\Program Files\DivX\DivX Player\npDivxPlayerPlugin.dll P2 - FPN: [HKLM] [@Google.com/GoogleEarthPlugin] - (.Google - GEPlugin.) -- C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll P2 - FPN: [HKLM] [@messenger.yahoo.com/YahooMessengerStatePlugin;version=1.0.0.2] - (.Yahoo! Inc. - Yahoo Application State Plugin.) -- C:\Program Files\Yahoo!\Shared\npYState.dll P2 - FPN: [HKLM] [@Microsoft.com/NpCtrl,version=1.0] - (. Microsoft Corporation - 4.0.50826.0.) -- C:\Program Files\Microsoft Silverlight\4.0.50826.0\npctrl.dll P2 - FPN: [HKLM] [@microsoft.com/OfficeLive,version=1.3] - (.Microsoft Corp. - Office Live Update v1.3.) -- C:\Program Files\Microsoft\Office Live\npOLW.dll P2 - FPN: [HKLM] [@microsoft.com/WLPG,version=14.0.8081.0709] - (.Microsoft Corporation - NPWLPG.) -- C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll P2 - FPN: [HKLM] [@microsoft.com/WPF,version=3.5] - (.Microsoft Corporation - Windows Presentation Foundation (WPF) plug-in for Mozilla browsers.) -- C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll P2 - FPN: [HKLM] [@real.com/nppl3260;version=6.0.12.450] - (.RealNetworks, Inc. - RealPlayer LiveConnect-Enabled Plug-In.) -- C:\Program Files\Real\RealPlayer\Netscape6\nppl3260.dll P2 - FPN: [HKLM] [@real.com/nprjplug;version=1.0.3.448] - (.RealNetworks, Inc. - RealJukebox Netscape Plugin.) -- C:\Program Files\Real\RealPlayer\Netscape6\nprjplug.dll P2 - FPN: [HKLM] [@real.com/nprpjplug;version=6.0.12.448] - (.RealNetworks, Inc. - 6.0.12.448.) -- C:\Program Files\Real\RealPlayer\Netscape6\nprpjplug.dll P2 - FPN: [HKLM] [@tools.google.com/Google Update;version=8] - (.Google Inc. - Google Update.) -- C:\Program Files\Google\Update\1.2.183.29\npGoogleOneClick8.dll P2 - FPN: [HKLM] [@veoh.com/VeohPlayer] - (.Veoh Networks Inc - NPVeohVersion4 plugin.) -- C:\Program Files\Veoh Networks\Veoh\Plugins\noreg\NPVeohVersion.dll P2 - FPN: [HKLM] [@zylom.com/ZylomGamesPlayer] - (.Zylom - Zylom Plugin.) -- C:\Documents and Settings\All Users\Application Data\Zylom\ZylomGamesPlayer\npzylomgamesplayer.dll P2 - FPN: [HKLM] [yaxmpb@yahoo.com/YahooActiveXPluginBridge;version=1.0.0.1] - (.Yahoo! Inc. - Yahoo! activeX Plug-in Bridge.) -- C:\PROGRA~1\YAHOO!\COMMON\npyaxmpb.dll P2 - FPN: [HKCU] [@adobe.com/FlashPlayer] - (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll ---\\ Modification d'une valeur Ini (Changed inifile value, mapped to Registry) (F2) F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\userinit.exe, F2 - REG:system.ini: VMApplet=rundll32 shell32,Control_RunDLL "sysdm.cpl" ---\\ Pages de démarrage d'Internet Explorer (R0) R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Google R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MSN : Hotmail, Messenger, Actualité, Sport et Vidéo ---\\ Pages de recherche d'Internet Explorer (R1) R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN : Hotmail, Messenger, Actualité, Sport et Vidéo R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Extensions Off Page = about:NoAdd-ons R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Security Risk Page = about:SecurityRisk ---\\ Internet Explorer URLSearchHook (R3) R3 - URLSearchHook: Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} . (.Microsoft Corporation - Internet Explorer.) (8.00.6001.18939 (longhorn_ie8_gdr.100616-1700)) -- C:\WINDOWS\system32\ieframe.dll R3 - URLSearchHook: Microsoft Url Search Hook - {08C06D61-F1F3-4799-86F8-BE1A89362C85} . (.Pas de propriétaire - Pas de description.) (No version) -- C:\Program Files\OrangeHSS\SearchURLHook\SearchPageURL.dll ---\\ Browser Helper Objects de navigateur (O2) O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} . (.Adobe Systems Incorporated - Adobe Acrobat IE Helper Version 7.0 for Act.) -- C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll O2 - BHO: (no name) - {08D5B359-0FA2-4F2A-91A0-06189E82B8F5} . (.ekrytlhafs Corporation - wmfpymfz DLL.) -- c:\windows\system32\dlob947.dll O2 - BHO: SWEETIE Class - {1A0AADCD-3A72-4b5f-900F-E3BB5A838E2A} . (.Macrogaming - IE Toolbar.) -- C:\PROGRA~1\MACROG~1\SWEETI~1\toolbar.dll O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} . (.Pas de propriétaire - Pas de description.) -- (.not file.) O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} . (.Microsoft Corporation - Search Helper for Internet Explorer.) -- C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} . (.Microsoft Corporation - GrooveShellExtensions Module.) -- C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll O2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} . (.Sun Microsystems, Inc. - Java Platform SE binary.) -- C:\Program Files\Java\jre6\bin\ssv.dll O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} . (.Microsoft Corporation - WindowsLiveLogin.dll.) -- C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} . (.Google Inc. - Barre d'outils pour IE.) -- c:\program files\google\googletoolbar1.dll O2 - BHO: Google Toolbar Notifier BHO - {af69de43-7d58-4638-b6fa-ce66b5ad205d} . (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files\Google\GoogleToolbarNotifier\3.1.807.1746\swg.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} . (.Sun Microsystems, Inc. - Java Platform SE binary.) -- C:\Program Files\Java\jre6\bin\jp2ssv.dll O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} . (.Microsoft Corporation - Windows Live Toolbar Core.) -- C:\Program Files\Windows Live\Toolbar\wltcore.dll O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} . (.Sun Microsystems, Inc. - Java Quick Starter binary.) -- C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll O2 - BHO: EpsonToolBandKicker Class - {E99421FB-68DD-40F0-B4AC-B7027CAE2F1A} . (.SEIKO EPSON CORPORATION - EPSON Web-To-Page.) -- C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll ---\\ Internet Explorer Toolbars (O3) O3 - Toolbar: EPSON Web-To-Page - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} . (.SEIKO EPSON CORPORATION - EPSON Web-To-Page.) -- C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll O3 - Toolbar: SweetIM For Internet Explorer - {BC4FFE41-DE9F-46fa-B455-AAD49B9F9938} . (.Macrogaming - IE Toolbar.) -- C:\Program Files\Macrogaming\SweetIMBarForIE\toolbar.dll O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} . (.Google Inc. - Barre d'outils pour IE.) -- c:\program files\google\googletoolbar1.dll O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} . (.Microsoft Corporation - Windows Live Toolbar Core.) -- C:\Program Files\Windows Live\Toolbar\wltcore.dll O3 - Toolbar: (no name) - {1E796980-9CC5-11D1-A83F-00C04FC99D61} . (.Pas de propriétaire - Pas de description.) -- (.not file.) ---\\ Applications démarrées par registre & par dossier (O4) O4 - HKLM\..\Run: [egui] . (.ESET - Eset GUI.) -- C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe O4 - HKLM\..\Run: [XeroxScannerDaemon] C:\Program Files\Xerox\NWWia\XrxFTPLt.exe (.not file.) O4 - HKLM\..\Run: [VX3000] . (.Microsoft Corporation - Microsoft LifeCam Device Application.) -- C:\WINDOWS\vVX3000.exe O4 - HKLM\..\Run: [TrackPointSrv] tp4mon.exe O4 - HKLM\..\Run: [symantec NetDriver Monitor] . (.Symantec Corporation - Symantec Security Drivers Install Monitor.) -- C:\PROGRA~1\SYMNET~1\SNDMon.exe O4 - HKLM\..\Run: [sMSERIAL] sm56hlpr.exe O4 - HKLM\..\Run: [siSPower] Rundll32.exe SiSPower.dll,ModeAgent O4 - HKLM\..\Run: [schedule_d] . (.Pas de propriétaire - MySchedule Microsoft ???????.) -- C:\Program Files\DVBT Application\Schedule_d.exe O4 - HKLM\..\Run: [PHIME2002ASync] . (.Microsoft Corporation - ???????? 2002a.) -- C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.exe O4 - HKLM\..\Run: [PHIME2002A] . (.Microsoft Corporation - ???????? 2002a.) -- C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.exe O4 - HKLM\..\Run: [MSPY2002] . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe O4 - HKLM\..\Run: [HiDTV Control] Clé orpheline O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe O4 - HKLM\..\Run: [soundMan] . (.Realtek Semiconductor Corp. - Realtek Sound Manager.) -- C:\Windows\SOUNDMAN.EXE O4 - HKLM\..\Run: [MSConfig] . (.Microsoft Corporation - Utilitaire de configuration système.) -- C:\WINDOWS\PCHealth\HelpCtr\Binaries\MSConfig.exe O4 - HKLM\..\Run: [ORAHSSSessionManager] . (.France Telecom SA - Pas de description.) -- C:\Program Files\OrangeHSS\SessionManager\SessionManager.exe O4 - HKLM\..\Run: [iMJPMIG8.1] . (.Microsoft Corporation - Microsoft IME.) -- C:\WINDOWS\IME\imjp8_1\IMJPMIG.exe O4 - HKLM\..\Run: [eRecoveryService] . (.acer Inc. - Monitor.) -- C:\Acer\Empowering Technology\eRecovery\Monitor.exe O4 - HKLM\..\Run: [EPSON Stylus CX3600 Series] . (.SEIKO EPSON CORPORATION - EPSON Status Monitor 3.) -- C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATI9BE.exe O4 - HKLM\..\Run: [bluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent O4 - HKLM\..\Run: [TkBellExe] . (.RealNetworks, Inc. - RealNetworks Scheduler.) -- C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe O4 - HKLM\..\Run: [QuickTime Task] . (.Apple Computer, Inc. - QuickTime Task.) -- C:\Program Files\QuickTime\qttask.exe O4 - HKLM\..\Run: [worxaesncm.tmp] . (.Pas de propriétaire - Pas de description.) -- C:\DOCUME~1\alex\LOCALS~1\Temp\worxaesncm.tmp O4 - HKLM\..\RunOnce: [Malwarebytes' Anti-Malware] . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe O4 - HKCU\..\Run: [EPSON Stylus CX3600 Series] . (.SEIKO EPSON CORPORATION - EPSON Status Monitor 3.) -- C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATI9BE.exe O4 - HKCU\..\Run: [ctfmon.exe] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [msnmsgr] . (.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files\Windows Live\Messenger\msnmsgr.exe O4 - HKCU\..\Run: [handlerfix70700en00.exe] . (.Pas de propriétaire - Pas de description.) -- C:\Documents and Settings\alex\Application Data\9B0F58A1428572D57282DF0EA5517B0B\handlerfix70700en00.exe O4 - HKCU\..\RunOnce: [2616415] . (.Pas de propriétaire - Pas de description.) -- C:\DOCUME~1\alex\LOCALS~1\APPLIC~1\2616415.exe O4 - HKCU\..\RunOnce: [9333647] . (.Pas de propriétaire - Pas de description.) -- C:\DOCUME~1\alex\LOCALS~1\APPLIC~1\9333647.exe O4 - HKLM\..\policies\Explorer\Run: [59t4] . (.Pas de propriétaire - Pas de description.) -- C:\DOCUME~1\alex\LOCALS~1\Temp\1biq.exe O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\CTFMON.exe O4 - HKUS\S-1-5-18\..\Run: [ALUAlert] C:\Program Files\Symantec\LiveUpdate\ALUNotify.exe (.not file.) O4 - HKUS\S-1-5-18\..\Run: [OrangePlayer] . (.Orange - Media Player.) -- c:\program files\orange\media player\Media Player.exe O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\CTFMON.exe O4 - HKUS\S-1-5-18\..\Run: [ALUAlert] C:\Program Files\Symantec\LiveUpdate\ALUNotify.exe (.not file.) O4 - HKUS\S-1-5-18\..\Run: [OrangePlayer] . (.Orange - Media Player.) -- c:\program files\orange\media player\Media Player.exe O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\CTFMON.exe O4 - HKUS\S-1-5-20\..\Run: [OrangePlayer] . (.Orange - Media Player.) -- c:\program files\orange\media player\Media Player.exe O4 - HKUS\S-1-5-21-2370589568-3427575406-723141664-1006\..\Run: [EPSON Stylus CX3600 Series] . (.SEIKO EPSON CORPORATION - EPSON Status Monitor 3.) -- C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATI9BE.exe O4 - HKUS\S-1-5-21-2370589568-3427575406-723141664-1006\..\Run: [ctfmon.exe] . (.Microsoft Corporation - CTF Loader.) -- C:\WINDOWS\system32\ctfmon.exe O4 - HKUS\S-1-5-21-2370589568-3427575406-723141664-1006\..\Run: [msnmsgr] . (.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files\Windows Live\Messenger\msnmsgr.exe O4 - HKUS\S-1-5-21-2370589568-3427575406-723141664-1006\..\Run: [handlerfix70700en00.exe] . (.Pas de propriétaire - Pas de description.) -- C:\Documents and Settings\alex\Application Data\9B0F58A1428572D57282DF0EA5517B0B\handlerfix70700en00.exe O4 - HKUS\S-1-5-21-2370589568-3427575406-723141664-1006\..\RunOnce: [2616415] . (.Pas de propriétaire - Pas de description.) -- C:\DOCUME~1\alex\LOCALS~1\APPLIC~1\2616415.exe O4 - HKUS\S-1-5-21-2370589568-3427575406-723141664-1006\..\RunOnce: [9333647] . (.Pas de propriétaire - Pas de description.) -- C:\DOCUME~1\alex\LOCALS~1\APPLIC~1\9333647.exe O4 - Global Startup: DSLMON.lnk . (.Pas de propriétaire - ADIMON MFC Application.) -- C:\Program Files\SAGEM\SAGEM F@st 800-840\dslmon.exe O4 - Global Startup: Microsoft Recherche accélérée.lnk . (.Microsoft Corporation - Microsoft Recherche accélérée.) -- C:\Program Files\Microsoft Office\Office\FINDFAST.EXE O4 - Global Startup: OneNote 2007 - Capture d'écran et lancement.lnk . (.Microsoft Corporation - Microsoft Office OneNote Quick Launcher.) -- C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE ---\\ Lignes supplémentaires dans le menu contextuel d'Internet Explorer (O8) O8 - Extra context menu item: E&xporter vers Microsoft Excel . (.Microsoft Corporation - Microsoft Office Excel.) -- C:\PROGRA~1\MICROS~2\Office12\EXCEL.exe ---\\ Boutons situés sur la barre d'outils principale d'Internet Explorer (O9) O9 - Extra button: PMU Poker - {06568ceb-5721-47d4-9d93-7e604fcbaeab} . (.Pas de propriétaire - Pas de description.) -- C:\Program Files\PMU\PMUPoker\images\ppicon.ico O9 - Extra button: Antivirus Internet - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} . (.Kaspersky Lab - Script Monitor Internet Explorer plugin.) -- C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\scieplugin.dll O9 - Extra button: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} . (.Microsoft Corporation - Windows Live Writer Blog This Extension.) -- C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra button: &Envoyer à OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} . (.Microsoft Corporation - Microsoft Office OneNote Internet Explorer Add-in.) -- C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} . (.Pas de propriétaire - Pas de description.) -- C:\PROGRA~1\MICROS~2\Office12\REFBARH.ICO O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} . (.not file.) - (.not file.) O9 - Extra button: Windows Messenger - {fb5f1910-f110-11d2-bb9e-00c04f795683} . (.Microsoft Corporation - Windows Messenger.) -- C:\Program Files\Messenger\msmsgs.exe ---\\ Winsock hijacker (Layered Service Provider) (O10) O10 - WLSP:\000000000001\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\WINDOWS\system32\mswsock.dll O10 - WLSP:\000000000002\Winsock LSP File . (.Microsoft Corporation - LDAP RnR Provider DLL.) -- C:\WINDOWS\system32\winrnr.dll O10 - WLSP:\000000000003\Winsock LSP File . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\WINDOWS\system32\mswsock.dll ---\\ Site dans la Zone de confiance d'Internet Explorer (O15) O15 - Trusted Zone: [HKCU\...\Domains\www] http.caisse-conges-stetienne.fr ---\\ Objets ActiveX (Downloaded Program Files)(O16) O16 - DPF: Microsoft XML Parser for Java (Microsoft XML Parser for Java) - (.not file.) - C:\WINDOWS\Java\classes\xmldso.cab O16 - DPF: {02BCC737-B171-4746-94C9-0D8A0B2C0089} (Microsoft Office Template and Media Control) - http://office2010.microsoft.com/sites/production/ieawsdc32.cab O16 - DPF: {104B0A37-AB99-4F06-8032-8BBDC3B77DDB} (Telechargement Control) - http://www.photoweb.fr/telechargement/Photoweb_Uploader.cab O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} (Shockwave ActiveX Control) - http://download.macromedia.com/pub/shockwave/cabs/director/sw.cab O16 - DPF: {1FF43AD5-2262-4C2F-81D4-26D710C3F305} (VB2S Mannequin Virtuel Control) - http://mannequin.redoute.fr/activex/Mannequin.cab O16 - DPF: {2472565F-E27A-11D9-ADFE-00062919A34C} (ActiveXUploadDiscount.UserControl1) - http://www.fotodiscount.com/activeX/newUploadDiscount.CAB O16 - DPF: {3E82BB3F-ABE4-458D-9281-0187286A4E51} (VoxsyncCtrl Class) - Portail Orange O16 - DPF: {406B5949-7190-4245-91A9-30A17DE16AD0} (Snapfish Activia) - http://www3.snapfish.fr/SnapfishActivia.cab O16 - DPF: {41ACD49D-1974-791A-0981-AA9872721044} (Ganymede Board Games) - http://67.15.101.33/g_bin/eng/boards_2_0_0_35.cab O16 - DPF: {5D637FAD-E202-48D1-8F18-5B9C459BD1E3} (Image Uploader Control) - http://express.foto.com/ImageUploader5.cab O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/FR-FR/a-UNO1/GAME_UNO1.cab O16 - DPF: {6218F7B5-0D3A-48BA-AE4C-49DCFA63D400} (CSEQueryObject Object) - http://www.myheritage.fr/Genoogle/Components/ActiveX/SearchEngineQuery.dll O16 - DPF: {6D2EF4B4-CB62-4C0B-85F3-B79C236D702C} (ContactExtractor Class) - http://www.facebook.com/controls/contactx.dll O16 - DPF: {6E5E167B-1566-4316-B27F-0DDAB3484CF7} (Image Uploader Control) - http://www.mypix.com/importer/ImageUploader4.cab O16 - DPF: {7E980B9B-8AE5-466A-B6D6-DA8CF814E78A} (MJLauncherCtrl Class) - http://gamenextfr.oberon-media.com/online/online2/luxor_amun_rising/mjolauncher.cab O16 - DPF: {8100D56A-5661-482C-BEE8-AFECE305D968} (Facebook Photo Uploader 5 Control) - http://upload.facebook.com/controls/2009.07.28_v5.5.8.1/FacebookPhotoUploader55.cab O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} () - http://fpdownload.macromedia.com/get/flashplayer/current/polarbear/ultrashim.cab O16 - DPF: {9DF1C00D-8426-4337-972C-DC042D19A916} (FTMediaPlayer Class) - http://webtv.guidetv.orange.fr/resources/OCS_9418.cab O16 - DPF: {A18962F6-E6ED-40B1-97C9-1FB36F38BFA8} (Aurigma Image Uploader 3.5 Control) - http://www.girafoto.fr/uploaders/ImageUploader3.cab O16 - DPF: {A73BAEFA-EE65-494D-BEDB-DD3E5A34FA98} (Image Uploader) - http://www.extrafilm.fr/ImageUploader4.cab O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (MSN Games - Installer) - http://messenger.zone.msn.com/binary/ZIntro.cab56649.cab O16 - DPF: {BFF1950D-B1B4-4AE8-B842-B2CCF06D9A1B} (Zylom Games Player) - http://game07.zylom.com/activex/zylomgamesplayer.cab O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab O16 - DPF: {CE3409C4-9E26-4F8E-83E4-778498F9E7B4} (PB_Uploader Class) - Developpement photo, tirage photo numerique et impressions - PhotoBox O16 - DPF: {CE69F98F-2AF3-4306-BAC6-A79070EDA1B4} (Zylom Loader Object) - http://eu.download.games.yahoo.com/zylom/activex/zylomloader.cab O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab O16 - DPF: {D4323BF2-006A-4440-A2F5-27E3E7AB25F8} (Virtools WebPlayer Class) - http://3dlifeplayer.dl.3dvia.com/player/install/installer.exe O16 - DPF: {D8089245-3211-40F6-819B-9E5E92CD61A2} (FlashXControl Object) - https://signin3.valueactive.com/Register/Branding/olr3313/OCX/v1018/flashax.cab O16 - DPF: {D821DC4A-0814-435E-9820-661C543A4679} (CRLDownloadWrapper Class) - http://drmlicense.one.microsoft.com/crlupdate/en/crlocx.ocx O16 - DPF: {DEB21AD3-FDA4-42F6-B57D-EE696A675EE8} (IPSUploader Control) - http://asp06.photoprintit.de/microsite/3462/defaults/activex/IPSUploader.cab O16 - DPF: {DF780F87-FF2B-4DF8-92D0-73DB16A1543A} (PopCapLoader Object) - http://www.popcap.com/webgames/popcaploader_v10_fr.cab O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} () - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab O16 - DPF: {FF1CD9A3-00CD-45C1-8182-4EEC229A182D} (Plaxo Auto-Import Utility) - https://www.plaxo.com/activex/plx_upldr-2k-xp.cab ---\\ Modification Domaine/Adresses DNS (O17) O17 - HKLM\System\CS1\Services\Tcpip\..\{36B260F4-917F-4594-9C7C-836C1A8BE05E}: NameServer = 93.188.162.127,93.188.161.217 O17 - HKLM\System\CS1\Services\Tcpip\..\{4F3D58E7-7A73-4D35-976B-9EB2530DAE6B}: NameServer = 93.188.162.127,93.188.161.217 O17 - HKLM\System\CS1\Services\Tcpip\..\{36B260F4-917F-4594-9C7C-836C1A8BE05E}: DhcpNameServer = 93.188.162.127,93.188.161.217 O17 - HKLM\System\CS1\Services\Tcpip\..\{4F3D58E7-7A73-4D35-976B-9EB2530DAE6B}: DhcpNameServer = 192.168.1.1 192.168.1.1 ---\\ Valeur de Registre AppInit_DLLs et sous-clés Winlogon Notify (autorun) (O20) O20 - Winlogon Notify: dimsntfy . (.Microsoft Corporation - DIMS Notification Handler.) -- C:\WINDOWS\System32\dimsntfy.dll O20 - Winlogon Notify: klogon . (.Kaspersky Lab - Logon Visualizer.) -- C:\WINDOWS\system32\klogon.dll O20 - Winlogon Notify: WgaLogon . (.Microsoft Corporation - Notifications Windows Genuine Advantage.) -- C:\WINDOWS\System32\WgaLogon.dll ---\\ Clé de Registre autorun ShellServiceObjectDelayLoad (SSO/SSODL) (O21) O21 - SSODL: PostBootReminder - {7849596a-48ea-486e-8937-a2a3009f31a9} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\WINDOWS\system32\SHELL32.dll O21 - SSODL: CDBurn - {fbeb8a05-beee-4442-804e-409d6c4515e9} . (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\WINDOWS\system32\SHELL32.dll O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} . (.Microsoft Corporation - Web Site Monitor.) -- C:\WINDOWS\system32\webcheck.dll O21 - SSODL: SysTray - {35CEC8A3-2BE6-11D2-8773-92E220524153} . (.Microsoft Corporation - Objet du service d'environnement Systray.) -- C:\WINDOWS\system32\stobject.dll O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} . (.Microsoft Corporation - Windows Portable Device Shell Service Objec.) -- C:\WINDOWS\system32\WPDShServiceObj.dll O21 - SSODL: UPnPMonitor - {e57ce738-33e8-4c51-8354-bb4de9d215d1} . (.Microsoft Corporation - Moniteur et dossier UPNP Tray.) -- C:\WINDOWS\system32\upnpui.dll ---\\ Clé de Registre autorun SharedTaskScheduler (STS) (O22) O22 - SharedTaskScheduler: (no name) - {8C7461EF-2B13-11d2-BE35-3078302C2030} . (.Microsoft Corporation - Bibliothèque de l'interface utilisateur du.) -- C:\WINDOWS\system32\browseui.dll ---\\ Liste des services NT non Microsoft et non désactivés (O23) O23 - Service: Eset Service (ekrn) . (.ESET - Eset Service.) - C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe ---\\ Enumération Active Desktop & MHTML Editor (O24) O24 - Default MHTML Editor: Last - .(.Pas de propriétaire - Pas de description.) - (.not file.) ---\\ Tâches planifiées en automatique (O39) O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\Check Updates for Windows Live Toolbar.job O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\AppleSoftwareUpdate.job O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\Symantec NetDetect.job O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\Norton Security Scan.job O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\User_Feed_Synchronization-{A189D8BA-FDF1-4E67-B576-87E0E83F059B}.job O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job O39 - APT:Automatic Planified Task - C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job ---\\ Composants installés (ActiveSetup Installed Components) (O40) O40 - ASIC: Personnalisation du navigateur - >{60B49E34-C7CC-11D0-8953-00A0C90347FF}MICROS . (.Pas de propriétaire - Pas de description.) -- RunDLL32 IEDKCS32.DLL,BrandIE4 SIGNUP O40 - ASIC: Adobe Shockwave Director 10.2 - {233C1507-6A77-46A4-9443-F871F945D258} . (.Adobe Systems, Inc. - Shockwave ActiveX Control.) -- C:\WINDOWS\system32\Macromed\Director\swdir.dll O40 - ASIC: NetMeeting 3.01 - {44BBA842-CC51-11CF-AAFA-00AA00B6015B} . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\INF\msnetmtg.inf O40 - ASIC: Windows Messenger 4.7 - {5945c046-1e7d-11d1-bc44-00c04fd912be} . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\INF\msmsgs.inf O40 - ASIC: Microsoft Windows Media Player - {6BF52A52-394A-11d3-B153-00C04F79FAA6} . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\INF\wmp11.inf O40 - ASIC: Fax - {8b15971b-5355-4c82-8c07-7e181ea07608} . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\INF\fxsocm.inf O40 - ASIC: Adobe Flash Player - {D27CDB6E-AE6D-11cf-96B8-444553540000} . (.Adobe Systems, Inc. - Adobe Flash Player 10.0 r45.) -- C:\WINDOWS\system32\Macromed\Flash\Flash10e.ocx ---\\ Pilotes lancés au démarrage (O41) O41 - Driver: (7d0a1a2a) . (.Pas de propriétaire - Pas de description.) - C:\WINDOWS\system32\drivers\7d0a1a2a.sys O41 - Driver: easdrv (easdrv) . (.ESET - Eset AntiStealth driver.) - C:\Windows\system32\DRIVERS\easdrv.sys O41 - Driver: epfwtdi (epfwtdi) . (.ESET - Eset Personal Firewall TDI filter.) - C:\Windows\system32\DRIVERS\epfwtdi.sys O41 - Driver: Klif (klif) . (.Kaspersky Lab - spuper-ptor.) - C:\WINDOWS\system32\drivers\klif.sys O41 - Driver: (SiSkp) . (.Silicon Integrated Systems Corporation - SiS VGA Driver Manager.) - C:\Windows\system32\DRIVERS\srvkp.sys O41 - Driver: SYMTDI (SYMTDI) . (.Symantec Corporation - Network Dispatch Driver.) - C:\WINDOWS\system32\Drivers\SYMTDI.sys ---\\ Logiciels installés (O42) O42 - Logiciel: Adobe Bridge 1.0 - (.Adobe Systems.) [HKLM] -- {B74D4E10-6884-0000-0000-000000000101} O42 - Logiciel: Adobe Common File Installer - (.Adobe System Incorporated.) [HKLM] -- {8EDBA74D-0686-4C99-BFDD-F894678E5101} O42 - Logiciel: Adobe Flash Player 10 ActiveX - (.Adobe Systems Incorporated.) [HKLM] -- Adobe Flash Player ActiveX O42 - Logiciel: Adobe Help Center 1.0 - (.Adobe Systems.) [HKLM] -- {E9787678-119F-4D52-B551-6739B2B22101} O42 - Logiciel: Adobe Photoshop CS2 - (.Adobe Systems, Inc..) [HKLM] -- Adobe Photoshop CS2 - {236BB7C4-4419-42FD-040C-2E257A25E34D} O42 - Logiciel: Adobe Reader 7.0 - (.Adobe Systems Incorporated.) [HKLM] -- {AC76BA86-7AD7-1033-7B44-A70000000000} O42 - Logiciel: Adobe SVG Viewer - (.Adobe Systems, Inc..) [HKLM] -- Adobe SVG Viewer O42 - Logiciel: Adobe Shockwave Player - (.Adobe Systems, Inc..) [HKLM] -- Adobe Shockwave Player O42 - Logiciel: Adobe Stock Photos 1.0 - (.Adobe Systems.) [HKLM] -- {786C5747-0C40-4930-9AFE-113BCE553101} O42 - Logiciel: Agere Systems PCI Soft Modem - (.Pas de propriétaire.) [HKLM] -- agere systems soft modem O42 - Logiciel: Antimalware Doctor - (.Pas de propriétaire.) [HKCU] -- Antimalware Doctor O42 - Logiciel: Apple Software Update - (.Apple Computer, Inc..) [HKLM] -- {A50C25D7-62E9-4511-AD70-8E2DA5E79B7D} O42 - Logiciel: ArcSoft TotalMedia 3 - (.ArcSoft.) [HKLM] -- {268CF0B8-CA38-4E20-9E99-514A07F7C1F1} O42 - Logiciel: Assistant de connexion Windows Live - (.Microsoft Corporation.) [HKLM] -- {DCE8CD14-FBF5-4464-B9A4-E18E473546C7} O42 - Logiciel: Audacity 1.2.6 - (.Pas de propriétaire.) [HKLM] -- Audacity_is1 O42 - Logiciel: CC_ccStart - (.Symantec Corporation.) [HKLM] -- {D6414CC7-F215-467F-88B1-546ED863F35B} O42 - Logiciel: Complément Office 2007 - Microsoft Enregistrer en tant que PDF ou XPS (Beta) - (.Microsoft Corporation.) [HKLM] -- {30120000-00b2-040c-0000-0000000ff1ce} O42 - Logiciel: CrazyTalk for Skype - (.Pas de propriétaire.) [HKLM] -- {8865B208-4759-4308-8DB5-3C18D2F568E2} O42 - Logiciel: DVBT Application - (.Pas de propriétaire.) [HKLM] -- {30AD137B-00F0-45D7-94AF-019A368A7AFF} O42 - Logiciel: Defenza - (.Pas de propriétaire.) [HKLM] -- {21166ACF-FEB8-413D-B517-378D806E303D} O42 - Logiciel: Disc2Phone - (.Sony Media Software.) [HKLM] -- {FFAB5ABB-8AAB-42E2-847F-1743E51E01E9} O42 - Logiciel: DivX Codec - (.DivX, Inc..) [HKLM] -- {7B63B2922B174135AFC0E1377DD81EC2} O42 - Logiciel: DivX Content Uploader - (.DivX, Inc..) [HKLM] -- {D050D7362D214723AD585B541FFB6C11} O42 - Logiciel: DivX Converter - (.DivX, Inc..) [HKLM] -- {B13A7C41581B411290FBC0395694E2A9} O42 - Logiciel: DivX Player - (.DivXNetworks, Inc..) [HKLM] -- {8ADFC4160D694100B5B8A22DE9DCABD9} O42 - Logiciel: DivX Web Player - (.DivX,Inc..) [HKLM] -- {B7050CBDB2504B34BC2A9CA0A692CC29} O42 - Logiciel: EPSON CardMonitor - (.Pas de propriétaire.) [HKLM] -- {109D28C7-FB38-483A-9C91-001CB59E2699} O42 - Logiciel: EPSON Copy Utility 3 - (.Pas de propriétaire.) [HKLM] -- {67EDD823-135A-4D59-87BD-950616D6E857} O42 - Logiciel: EPSON Logiciel imprimante - (.Pas de propriétaire.) [HKLM] -- EPSON Printer and Utilities O42 - Logiciel: EPSON PRINT Image Framer Tool2.1 - (.Pas de propriétaire.) [HKLM] -- {23B59ED4-C360-11D7-875B-0090CC005647} O42 - Logiciel: EPSON PhotoQuicker3.5 - (.Pas de propriétaire.) [HKLM] -- {65F5B7AF-3363-11D7-BB6B-00018021113F} O42 - Logiciel: EPSON PhotoStarter3.1 - (.Pas de propriétaire.) [HKLM] -- {C48817E7-AA05-4151-A99D-1E1E550CE801} O42 - Logiciel: EPSON Scan - (.Pas de propriétaire.) [HKLM] -- EPSON Scanner O42 - Logiciel: EPSON Smart Panel - (.Pas de propriétaire.) [HKLM] -- {6C11D561-620B-47DA-A693-4C597F3CDF40} O42 - Logiciel: EPSON Web-To-Page - (.Pas de propriétaire.) [HKLM] -- {7F14F68C-17FA-4F88-B3FD-7F449C1EBF32} O42 - Logiciel: ESCX3600 Guide de réf. - (.Pas de propriétaire.) [HKLM] -- ESCX3600 Guide de réf. O42 - Logiciel: ESCX3600 Guide des logiciels - (.Pas de propriétaire.) [HKLM] -- ESCX3600 Guide des logiciels O42 - Logiciel: ESET Smart Security - (.Eset spol s r. o..) [HKLM] -- {A1350B64-1AF8-497B-AC07-307DF67FB8D4} O42 - Logiciel: Everest Poker (Remove Only) - (.Pas de propriétaire.) [HKLM] -- Everest Poker O42 - Logiciel: Fastlab Print Service - (.Pas de propriétaire.) [HKLM] -- Fastlab Print Service_is1 O42 - Logiciel: Free Word Excel Password Wizard - (.www.freewordexcelpassword.com.) [HKLM] -- {2EB44B16-05EF-42FD-9300-A85CDEF60864} O42 - Logiciel: GOM Player - (.Pas de propriétaire.) [HKLM] -- GOM Player O42 - Logiciel: Galerie de photos Windows Live - (.Microsoft Corporation.) [HKLM] -- {B131E59D-202C-43C6-84C9-68F0C37541F1} O42 - Logiciel: Google Toolbar for Internet Explorer - (.Google Inc..) [HKLM] -- {DBEA1034-5882-4A88-8033-81C4EF0CFA29} O42 - Logiciel: Google Toolbar for Internet Explorer - (.Pas de propriétaire.) [HKLM] -- {2318C2B1-4965-11d4-9B18-009027A5CD4F} O42 - Logiciel: Google Update Helper - (.Google Inc..) [HKLM] -- {A92DAB39-4E2C-4304-9AB6-BC44E68B55E2} O42 - Logiciel: Google Earth - (.Google.) [HKLM] -- {F7B0939E-58DF-11DF-B3A6-005056806466} O42 - Logiciel: Hercules WiFi Station for Livebox - (.Hercules.) [HKLM] -- {DECE22F4-EEDD-4615-BC56-2F4827FAD64B} O42 - Logiciel: Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595) - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB953595 O42 - Logiciel: Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484) - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB958484 O42 - Logiciel: Hotfix for Windows Media Format 11 SDK (KB929399) - (.Microsoft Corporation.) [HKLM] -- KB929399 O42 - Logiciel: Hotfix for Windows XP (KB954550-v5) - (.Microsoft Corporation.) [HKLM] -- KB954550-v5 O42 - Logiciel: Hotfix for Windows XP (KB976002-v5) - (.Microsoft Corporation.) [HKLM] -- KB976002-v5 O42 - Logiciel: Installation Windows Live - (.Microsoft Corporation.) [HKLM] -- WinLiveSuite_Wave3 O42 - Logiciel: Installation Windows Live - (.Microsoft Corporation.) [HKLM] -- {46ABBC54-1872-4AA3-95E2-F2C063A63F31} O42 - Logiciel: Integrated 10/100 Ethernet Controller Driver - (.Pas de propriétaire.) [HKLM] -- SiSLan O42 - Logiciel: J2SE Runtime Environment 5.0 Update 9 - (.Sun Microsystems, Inc..) [HKLM] -- {3248F0A8-6813-11D6-A77B-00B0D0150090} O42 - Logiciel: Java 6 Update 11 - (.Sun Microsystems, Inc..) [HKLM] -- {26A24AE4-039D-4CA4-87B4-2F83216011FF} O42 - Logiciel: Java 6 Update 2 - (.Sun Microsystems, Inc..) [HKLM] -- {3248F0A8-6813-11D6-A77B-00B0D0160020} O42 - Logiciel: Java 6 Update 3 - (.Sun Microsystems, Inc..) [HKLM] -- {3248F0A8-6813-11D6-A77B-00B0D0160030} O42 - Logiciel: Java SE Runtime Environment 6 Update 1 - (.Sun Microsystems, Inc..) [HKLM] -- {3248F0A8-6813-11D6-A77B-00B0D0160010} O42 - Logiciel: Junk Mail filter update - (.Microsoft Corporation.) [HKLM] -- {E2DFE069-083E-4631-9B6C-43C48E991DE5} O42 - Logiciel: Kaspersky Anti-Virus 6.0 - (.Kaspersky Lab.) [HKLM] -- InstallWIX_{75193929-9A52-4CA4-98DE-8C7296940920} O42 - Logiciel: L&H TTS3000 Français - (.Pas de propriétaire.) [HKLM] -- LHTTSFRF O42 - Logiciel: Lecteur Windows Media 11 - (.Pas de propriétaire.) [HKLM] -- Windows Media Player O42 - Logiciel: Livestation - (.Livestation.) [HKLM] -- {57689BE0-BFA7-11DD-AD8B-0800200C9A66} O42 - Logiciel: Logiciel WebCam de Labtec - (.Labtec, Inc..) [HKLM] -- {C43048A9-742C-4DAD-90D2-E3B53C9DB825} O42 - Logiciel: Logiciel de Synchronisation Orange - (.Orange.) [HKLM] -- {C2EBC2F1-B766-4AE3-A10C-6EBBC1EE3B02} O42 - Logiciel: MSN - (.Pas de propriétaire.) [HKLM] -- MSNINST O42 - Logiciel: MSRedist - (.Symantec Corporation.) [HKLM] -- {FC37ABD0-2108-4beb-B010-1254E0662B5A} O42 - Logiciel: MSRuntime Libraries - (.Thomson.) [HKLM] -- {eca2b21b-a180-4775-b93f-6e404e36a8cc} O42 - Logiciel: MSVCRT - (.Microsoft.) [HKLM] -- {22B775E7-6C42-4FC5-8E10-9A5E3257BD94} O42 - Logiciel: MSXML 4.0 SP2 (KB936181) - (.Microsoft Corporation.) [HKLM] -- {C04E32E0-0416-434D-AFB9-6969D703A9EF} O42 - Logiciel: MSXML 4.0 SP2 (KB954430) - (.Microsoft Corporation.) [HKLM] -- {86493add-824d-4b8e-bd72-8c5dcdc52a71} O42 - Logiciel: MSXML 4.0 SP2 (KB973688) - (.Microsoft Corporation.) [HKLM] -- {F662A8E6-F4DC-41A2-901E-8C11F044BDEC} O42 - Logiciel: Malwarebytes' Anti-Malware - (.Malwarebytes Corporation.) [HKLM] -- Malwarebytes' Anti-Malware_is1 O42 - Logiciel: Media Player - (.Orange.) [HKLM] -- Media Player O42 - Logiciel: Messenger Plus! 3 - (.Pas de propriétaire.) [HKLM] -- MsgPlus! Plugin O42 - Logiciel: Messenger Plus! Live - (.Patchou.) [HKLM] -- Messenger Plus! Live O42 - Logiciel: Microsoft .NET Framework 1.1 - (.Microsoft.) [HKLM] -- {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1} O42 - Logiciel: Microsoft .NET Framework 1.1 - (.Pas de propriétaire.) [HKLM] -- Microsoft .NET Framework 1.1 (1033) O42 - Logiciel: Microsoft .NET Framework 1.1 French Language Pack - (.Microsoft.) [HKLM] -- {9A394342-4A68-4EBA-85A6-55B559F4E700} O42 - Logiciel: Microsoft .NET Framework 1.1 Security Update (KB979906) - (.Pas de propriétaire.) [HKLM] -- M979906 O42 - Logiciel: Microsoft .NET Framework 2.0 Service Pack 2 - (.Microsoft Corporation.) [HKLM] -- {C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F} O42 - Logiciel: Microsoft .NET Framework 3.0 Service Pack 2 - (.Microsoft Corporation.) [HKLM] -- {A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7} O42 - Logiciel: Microsoft .NET Framework 3.5 SP1 - (.Microsoft Corporation.) [HKLM] -- Microsoft .NET Framework 3.5 SP1 O42 - Logiciel: Microsoft .NET Framework 3.5 SP1 - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} O42 - Logiciel: Microsoft Carioca - (.Microsoft.) [HKLM] -- {49D70E70-23CB-4BE5-8A67-8770F6B1BB2F} O42 - Logiciel: Microsoft Choice Guard - (.Microsoft Corporation.) [HKLM] -- {F0E12BBA-AD66-4022-A453-A1C8A0C4D570} O42 - Logiciel: Microsoft Compression Client Pack 1.0 for Windows XP - (.Microsoft Corporation.) [HKLM] -- MSCompPackV1 O42 - Logiciel: Microsoft Internationalized Domain Names Mitigation APIs - (.Microsoft Corporation.) [HKLM] -- IDNMitigationAPIs O42 - Logiciel: Microsoft LifeCam - (.Microsoft.) [HKLM] -- {3C137BCF-8ADC-430D-B01C-A45593AC512B} O42 - Logiciel: Microsoft National Language Support Downlevel APIs - (.Microsoft Corporation.) [HKLM] -- NLSDownlevelMapping O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0015-040C-0000-0000000FF1CE}_ENTERPRISER_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C} O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0016-040C-0000-0000000FF1CE}_ENTERPRISER_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C} O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0018-040C-0000-0000000FF1CE}_ENTERPRISER_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C} O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0019-040C-0000-0000000FF1CE}_ENTERPRISER_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C} O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001A-040C-0000-0000000FF1CE}_ENTERPRISER_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C} O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001B-040C-0000-0000000FF1CE}_ENTERPRISER_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C} O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-0044-040C-0000-0000000FF1CE}_ENTERPRISER_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C} O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-006E-040C-0000-0000000FF1CE}_ENTERPRISER_{B165D3C2-40AE-4D39-86F7-E5C87C4264C0} O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-00A1-040C-0000-0000000FF1CE}_ENTERPRISER_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C} O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-00BA-040C-0000-0000000FF1CE}_ENTERPRISER_{AE187E0D-EBA5-4EE1-A397-BF1A577CB24C} O42 - Logiciel: Microsoft Office 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {91120000-0030-0000-0000-0000000FF1CE}_ENTERPRISER_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B} O42 - Logiciel: Microsoft Office 97 Professional - (.Pas de propriétaire.) [HKLM] -- Office8.0 O42 - Logiciel: Microsoft Office Access MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0015-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Enterprise 2007 - (.Microsoft Corporation.) [HKLM] -- ENTERPRISER O42 - Logiciel: Microsoft Office Enterprise 2007 - (.Microsoft Corporation.) [HKLM] -- {91120000-0030-0000-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Excel MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0016-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Groove MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-00BA-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office InfoPath MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0044-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Live Add-in 1.3 - (.Microsoft Corporation.) [HKLM] -- {57F0ED40-8F11-41AA-B926-4A66D0D1A9CC} O42 - Logiciel: Microsoft Office OneNote MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-00A1-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Outlook Connector - (.Microsoft Corporation.) [HKLM] -- {95120000-0122-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Outlook MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001A-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office PowerPoint MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0018-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Proof (Arabic) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-0401-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Proof (Dutch) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-0413-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Proof (English) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-0409-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Proof (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Proof (German) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-0407-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Proof (Spanish) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001F-0C0A-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Proofing (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-002C-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001F-0401-0000-0000000FF1CE}_ENTERPRISER_{14809F99-C601-4D4A-9391-F1E8FAA964C5} O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001F-0407-0000-0000000FF1CE}_ENTERPRISER_{A0516415-ED61-419A-981D-93596DA74165} O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001F-0409-0000-0000000FF1CE}_ENTERPRISER_{ABDDE972-355B-4AF1-89A8-DA50B7B5C045} O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001F-040C-0000-0000000FF1CE}_ENTERPRISER_{F580DDD5-8D37-4998-968E-EBB76BB86787} O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001F-0413-0000-0000000FF1CE}_ENTERPRISER_{D66D5A44-E480-4BA4-B4F2-C554F6B30EBB} O42 - Logiciel: Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) - (.Microsoft.) [HKLM] -- {90120000-001F-0C0A-0000-0000000FF1CE}_ENTERPRISER_{187308AB-5FA7-4F14-9AB9-D290383A10D9} O42 - Logiciel: Microsoft Office Publisher MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-0019-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Shared MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-006E-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft Office Word MUI (French) 2007 - (.Microsoft Corporation.) [HKLM] -- {90120000-001B-040C-0000-0000000FF1CE} O42 - Logiciel: Microsoft SQL Server 2005 Compact Edition [ENU] - (.Microsoft Corporation.) [HKLM] -- {F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8} O42 - Logiciel: Microsoft Search Enhancement Pack - (.Microsoft Corporation.) [HKLM] -- {06E6E30D-B498-442F-A943-07DE41D7F785} O42 - Logiciel: Microsoft Silverlight - (.Microsoft Corporation.) [HKLM] -- {89F4137D-6C26-4A84-BDB8-2E5A4BB71E00} O42 - Logiciel: Microsoft Sites publics français - (.Microsoft Corporation.) [HKLM] -- {B72B0ECE-F41E-4EC4-AA37-1A00640680BF} O42 - Logiciel: Microsoft Sync Framework Runtime Native v1.0 (x86) - (.Microsoft Corporation.) [HKLM] -- {8A74E887-8F0F-4017-AF53-CBA42211AAA5} O42 - Logiciel: Microsoft Sync Framework Services Native v1.0 (x86) - (.Microsoft Corporation.) [HKLM] -- {BD64AF4A-8C80-4152-AD77-FCDDF05208AB} O42 - Logiciel: Microsoft User-Mode Driver Framework Feature Pack 1.0 - (.Microsoft Corporation.) [HKLM] -- Wudf01000 O42 - Logiciel: Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 - (.Microsoft Corporation.) [HKLM] -- {770657D0-A123-3C07-8E44-1C83EC895118} O42 - Logiciel: Microsoft Visual C++ 2005 Redistributable - (.Microsoft Corporation.) [HKLM] -- {A49F249F-0C91-497F-86DF-B2585E8E76B7} O42 - Logiciel: Motorola SM56 Speakerphone Modem - (.Pas de propriétaire.) [HKLM] -- smserial O42 - Logiciel: Mozilla Firefox (3.0.19) - (.Mozilla.) [HKLM] -- Mozilla Firefox (3.0.19) O42 - Logiciel: MyHeritage Family Tree Builder - (.MyHeritage.com.) [HKLM] -- Family Tree Builder O42 - Logiciel: MyPhoneExplorer - (.F.J. Wechselberger.) [HKLM] -- MPE O42 - Logiciel: NOD32 v3.x FiX 1.1 by TemDono (Free Updates - Expire in 2050) - (.Pas de propriétaire.) [HKLM] -- NOD32 v3.x FiX 1.1 by TemDono_is1 O42 - Logiciel: NTI Backup NOW! 4 - (.NewTech Infosystems.) [HKLM] -- InstallShield_{385979FE-DC4F-4140-8EAD-A59625000D72} O42 - Logiciel: NTI CD & DVD-Maker - (.NewTech Infosystems.) [HKLM] -- InstallShield_{1577A05B-EE62-4BBC-9DB7-FE748FA44EC2} O42 - Logiciel: Navizon - (.Mexens Technology Inc..) [HKCU] -- Navizon O42 - Logiciel: Norton WMI Update - (.Symantec Corporation.) [HKLM] -- {1526D87C-A955-4FAB-BF18-697BA457E352} O42 - Logiciel: Norton™ Security Scan - (.Symantec Corporation.) [HKLM] -- {E5431FB5-B3EB-46C8-8275-F6447131C98A} O42 - Logiciel: OpenAL - (.Pas de propriétaire.) [HKLM] -- OpenAL O42 - Logiciel: Orange - Logiciels Internet - (.Pas de propriétaire.) [HKLM] -- {ORAHSS}.UninstallSuite O42 - Logiciel: Orange WebTV Player 1.29418 - (.Orange.) [HKLM] -- Orange WebTV Player_is1 O42 - Logiciel: Outil de téléchargement Windows Live - (.Microsoft Corporation.) [HKLM] -- {205C6BDD-7B73-42DE-8505-9A093F35A238} O42 - Logiciel: PIF DESIGNER2.1 - (.Pas de propriétaire.) [HKLM] -- {7BD0A2D8-4EA0-43C6-BDF8-DDA87B8031C6} O42 - Logiciel: PMU Poker - (.PMU.) [HKLM] -- PMUPoker O42 - Logiciel: Picasa 2 - (.Google, Inc..) [HKLM] -- Picasa2 O42 - Logiciel: PowerDVD - (.Pas de propriétaire.) [HKLM] -- {6811CAA0-BF12-11D4-9EA1-0050BAE317E1} O42 - Logiciel: Quick Zip 4.60.017 - (.Joseph Leung.) [HKLM] -- Quick Zip_is1 O42 - Logiciel: QuickTime - (.Apple Computer, Inc..) [HKLM] -- {55BF0E5F-EA8E-4C13-A8B4-9E4857F5A2DE} O42 - Logiciel: RealPlayer - (.RealNetworks.) [HKLM] -- RealPlayer 12.0 O42 - Logiciel: Realtek AC'97 Audio - (.Realtek Semiconductor Corp..) [HKLM] -- {FB08F381-6533-4108-B7DD-039E11FBC27E} O42 - Logiciel: SAGEM F@st 800-840 - (.Pas de propriétaire.) [HKLM] -- {4ae3a0cb-87b0-4f51-becd-3d1f8dfdd62f} O42 - Logiciel: SSC Service Utility v4.30 - (.SSC Localization Group.) [HKLM] -- SSC Service Utility_is1 O42 - Logiciel: ScanToWeb - (.Pas de propriétaire.) [HKLM] -- {EBAE381B-60A6-4863-AA9F-FCAB755BC9E5} O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB2277947) - (.Microsoft.) [HKLM] -- {91120000-0030-0000-0000-0000000FF1CE}_ENTERPRISER_{5857EE21-03D0-482E-9620-5A30B314A2AE} O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB969559) - (.Microsoft.) [HKLM] -- {91120000-0030-0000-0000-0000000FF1CE}_ENTERPRISER_{69F52148-9BF6-4CDC-BF76-103DEAF3DD08} O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB976321) - (.Microsoft.) [HKLM] -- {91120000-0030-0000-0000-0000000FF1CE}_ENTERPRISER_{7F207DCA-3399-40CB-A968-6E5991B1421A} O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB982312) - (.Microsoft.) [HKLM] -- {91120000-0030-0000-0000-0000000FF1CE}_ENTERPRISER_{B0EC5722-241F-4CDA-83B4-AA5846B6F9F4} O42 - Logiciel: Security Update for 2007 Microsoft Office System (KB982331) - (.Microsoft.) [HKLM] -- {91120000-0030-0000-0000-0000000FF1CE}_ENTERPRISER_{E8766951-2B6C-4022-86E8-80D2D1762B76} O42 - Logiciel: Security Update for CAPICOM (KB931906) - (.Microsoft Corporation.) [HKLM] -- KB931906 O42 - Logiciel: Security Update for CAPICOM (KB931906) - (.Microsoft Corporation.) [HKLM] -- {0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A} O42 - Logiciel: Security Update for Microsoft Office Access 2007 (KB979440) - (.Microsoft.) [HKLM] -- {91120000-0030-0000-0000-0000000FF1CE}_ENTERPRISER_{1142CCEC-ACA9-484B-BA90-C3A5CA1988C5} O42 - Logiciel: Security Update for Microsoft Office Access 2007 (KB979440) - (.Microsoft.) [HKLM] -- {91120000-0030-0000-0000-0000000FF1CE}_ENTERPRISER_{5A4E43D5-858F-49BD-BA72-8F30E1793060} O42 - Logiciel: Security Update for Microsoft Office Excel 2007 (KB982308) - (.Microsoft.) [HKLM] -- {91120000-0030-0000-0000-0000000FF1CE}_ENTERPRISER_{C3F9A0DC-A5D1-4BB6-870E-2953E5A2487B} O42 - Logiciel: Security Update for Microsoft Office InfoPath 2007 (KB979441) - (.Microsoft.) [HKLM] -- {91120000-0030-0000-0000-0000000FF1CE}_ENTERPRISER_{1109D0B3-EFA3-4553-AAED-4C3E9AD130E8} O42 - Logiciel: Security Update for Microsoft Office InfoPath 2007 (KB979441) - (.Microsoft.) [HKLM] -- {91120000-0030-0000-0000-0000000FF1CE}_ENTERPRISER_{8CCB781A-CF6B-4FCB-B6D8-59C64DF5C6DB} O42 - Logiciel: Security Update for Microsoft Office Outlook 2007 (KB980376) - (.Microsoft.) [HKLM] -- {91120000-0030-0000-0000-0000000FF1CE}_ENTERPRISER_{48113C06-9BA2-4D54-A731-D1D2C5B3144A} O42 - Logiciel: Security Update for Microsoft Office PowerPoint 2007 (KB982158) - (.Microsoft.) [HKLM] -- {91120000-0030-0000-0000-0000000FF1CE}_ENTERPRISER_{F5B70033-E79C-4569-90BF-BC9B4E4F3F46} O42 - Logiciel: Security Update for Microsoft Office Publisher 2007 (KB982124) - (.Microsoft.) [HKLM] -- {91120000-0030-0000-0000-0000000FF1CE}_ENTERPRISER_{289FA8BC-6A8E-4341-B194-EB26B49E9F5D} O42 - Logiciel: Security Update for Microsoft Office Visio Viewer 2007 (KB973709) - (.Microsoft.) [HKLM] -- {91120000-0030-0000-0000-0000000FF1CE}_ENTERPRISER_{71127777-8B2C-4F97-AF7A-6CF8CAC8224D} O42 - Logiciel: Security Update for Microsoft Office Word 2007 (KB2251419) - (.Microsoft.) [HKLM] -- {91120000-0030-0000-0000-0000000FF1CE}_ENTERPRISER_{7E9103DA-253F-41FF-9E83-7C83806C77DA} O42 - Logiciel: Security Update for Microsoft Office system 2007 (972581) - (.Microsoft.) [HKLM] -- {91120000-0030-0000-0000-0000000FF1CE}_ENTERPRISER_{3D019598-7B59-447A-80AE-815B703B84FF} O42 - Logiciel: Security Update for Microsoft Office system 2007 (KB974234) - (.Microsoft.) [HKLM] -- {91120000-0030-0000-0000-0000000FF1CE}_ENTERPRISER_{FCD742B9-7A55-44BC-A776-F795F21FEDDC} O42 - Logiciel: Segoe UI - (.Microsoft Corp.) [HKLM] -- {A1F66FC9-11EE-4F2F-98C9-16F8D1E69FB7} O42 - Logiciel: SiS VGA Utilities - (.Pas de propriétaire.) [HKLM] -- SiS VGA Driver O42 - Logiciel: SiSAGP driver - (.Pas de propriétaire.) [HKLM] -- {DC226AC9-0314-496C-BE6A-B6A132628466} O42 - Logiciel: Smartphone Studio - (.Pas de propriétaire.) [HKLM] -- Smartphone Studio O42 - Logiciel: Sony Ericsson PC Suite 1.20.224 - (.Sony Ericsson.) [HKLM] -- {7689CA7A-1270-425A-9959-EB4CB25EA29A} O42 - Logiciel: SweetIM For Internet Explorer 3.0b - (.Macrogaming LTD..) [HKLM] -- {F6D63A65-BD23-46F3-B9A3-87F442423481} O42 - Logiciel: SymNet - (.Symantec Corp.) [HKLM] -- {E47EE8FB-ACC0-4608-859C-4E2851B18A6A} O42 - Logiciel: TomTom HOME 2.7.3.1894 - (.TomTom.) [HKLM] -- TomTom HOME O42 - Logiciel: TomTom HOME Visual Studio Merge Modules - (.TomTom International B.V..) [HKLM] -- {8F3C31C5-9C3A-4AA8-8EFA-71290A7AD533} O42 - Logiciel: Update for 2007 Microsoft Office System (KB967642) - (.Microsoft.) [HKLM] -- {91120000-0030-0000-0000-0000000FF1CE}_ENTERPRISER_{C444285D-5E4F-48A4-91DD-47AAAA68E92D} O42 - Logiciel: Update for Microsoft .NET Framework 3.5 SP1 (KB963707) - (.Microsoft Corporation.) [HKLM] -- {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB963707 O42 - Logiciel: Update for Microsoft Office OneNote 2007 (KB980729) - (.Microsoft.) [HKLM] -- {91120000-0030-0000-0000-0000000FF1CE}_ENTERPRISER_{329050A9-EF80-40F9-B633-74508F54C1FF} O42 - Logiciel: Update for Outlook 2007 Junk Email Filter (kb2279264) - (.Microsoft.) [HKLM] -- {91120000-0030-0000-0000-0000000FF1CE}_ENTERPRISER_{01D475AB-57B1-44CC-8A8F-3A6B0FA4989F} O42 - Logiciel: VeohTV BETA - (.Veoh Networks, Inc..) [HKLM] -- InstallShield_{97A96172-A963-4A37-9FFB-DA6805BB915A} O42 - Logiciel: Virtools 3D Life Player - (.Virtools.) [HKLM] -- Virtools3DLifePlayer O42 - Logiciel: Wanadoo Messager - (.Pas de propriétaire.) [HKLM] -- Wanadoo Messager O42 - Logiciel: Windows Genuine Advantage Notifications (KB905474) - (.Microsoft Corporation.) [HKLM] -- WgaNotify O42 - Logiciel: Windows Internet Explorer 7 - (.Microsoft Corporation.) [HKLM] -- ie7 O42 - Logiciel: Windows Internet Explorer 8 - (.Microsoft Corporation.) [HKLM] -- ie8 O42 - Logiciel: Windows Live Call - (.Microsoft Corporation.) [HKLM] -- {82C7B308-0BDD-49D8-8EA5-9CD3A3F9DF41} O42 - Logiciel: Windows Live Communications Platform - (.Microsoft Corporation.) [HKLM] -- {3B4E636E-9D65-4D67-BA61-189800823F52} O42 - Logiciel: Windows Live Contrôle parental - (.Microsoft Corporation.) [HKLM] -- {D5D81435-B8DE-4CAF-867F-7998F2B92CFC} O42 - Logiciel: Windows Live FolderShare - (.Microsoft Corporation.) [HKLM] -- {2075CB0A-D26F-4DAA-B424-5079296B43BA} O42 - Logiciel: Windows Live Mail - (.Microsoft Corporation.) [HKLM] -- {5DD76286-9BE7-4894-A990-E905E91AC818} O42 - Logiciel: Windows Live Messenger - (.Microsoft Corporation.) [HKLM] -- {770F1BEC-2871-4E70-B837-FB8525FFA3B1} O42 - Logiciel: Windows Live Safety Scanner - (.Pas de propriétaire.) [HKLM] -- Windows Live Safety Scanner O42 - Logiciel: Windows Live Toolbar - (.Microsoft Corporation.) [HKLM] -- {F7D27C70-90F5-49B9-B188-0A133C0CE353} O42 - Logiciel: Windows Live Writer - (.Microsoft Corporation.) [HKLM] -- {4634B21A-CC07-4396-890C-2B8168661FEA} O42 - Logiciel: Windows Media Format 11 runtime - (.Microsoft Corporation.) [HKLM] -- WMFDist11 O42 - Logiciel: Windows Media Format 11 runtime - (.Pas de propriétaire.) [HKLM] -- Windows Media Format Runtime O42 - Logiciel: Windows Media Player 11 - (.Microsoft Corporation.) [HKLM] -- wmp11 O42 - Logiciel: Windows XP Service Pack 3 - (.Microsoft Corporation.) [HKLM] -- windows xp service O42 - Logiciel: XnView 1.90.3 - (.Gougelet Pierre-e.) [HKLM] -- XnView_is1 O42 - Logiciel: Yahoo! Messenger - (.Pas de propriétaire.) [HKLM] -- Yahoo! Messenger O42 - Logiciel: Zylom Games Player Plugin - (.Zylom Games.) [HKLM] -- Zylom Games Player Plugin O42 - Logiciel: jv16 PowerTools 1.3 - (.Pas de propriétaire.) [HKLM] -- jv16 PowerTools_is1 ---\\ HKCU & HKLM Software Keys [HKCU\Software\ACD Systems] [HKCU\Software\ALWIL Software] [HKCU\Software\Adobe] [HKCU\Software\Alliance MCA] [HKCU\Software\Antimalware Doctor Inc] [HKCU\Software\AppDataLow\Software\Microsoft] [HKCU\Software\AppDataLow\Software] [HKCU\Software\AppDataLow] [HKCU\Software\Apple Computer, Inc.] [HKCU\Software\ArcSoft] [HKCU\Software\Astonsoft] [HKCU\Software\Audacity] [HKCU\Software\Aurigma] [HKCU\Software\Bugsplat] [HKCU\Software\CDDB] [HKCU\Software\Classes] [HKCU\Software\Clients] [HKCU\Software\Cyberlink] [HKCU\Software\Desktop Architect] [HKCU\Software\DivXNetworks] [HKCU\Software\EPSON] [HKCU\Software\ESET] [HKCU\Software\Enter Casino] [HKCU\Software\Europa Casino] [HKCU\Software\FRANCE TELECOM] [HKCU\Software\Fastlab_FRA] [HKCU\Software\GRETECH] [HKCU\Software\GanymedeNet] [HKCU\Software\Google] [HKCU\Software\Grand Virtual] [HKCU\Software\IM Providers] [HKCU\Software\Intel] [HKCU\Software\JavaSoft] [HKCU\Software\Jette7 Applications] [HKCU\Software\KasperskyLab] [HKCU\Software\KishKish] [HKCU\Software\Lake] [HKCU\Software\LdShih] [HKCU\Software\Livestation] [HKCU\Software\Local AppWizard-Generated Applications] [HKCU\Software\Logitech] [HKCU\Software\MGS] [HKCU\Software\Macromedia] [HKCU\Software\Malwarebytes' Anti-Malware] [HKCU\Software\Micro Application] [HKCU\Software\MicroGaming] [HKCU\Software\MozillaPlugins] [HKCU\Software\Mozilla] [HKCU\Software\MyPhoneExplorer] [HKCU\Software\Nektra] [HKCU\Software\Netscape] [HKCU\Software\NewTech Infosystems] [HKCU\Software\ODBC] [HKCU\Software\Orange] [HKCU\Software\PMU] [HKCU\Software\Patchou] [HKCU\Software\Policies] [HKCU\Software\PopCap] [HKCU\Software\RealNetworks] [HKCU\Software\SEIKO EPSON] [HKCU\Software\SWEETIE] [HKCU\Software\SignupShield] [HKCU\Software\Skinkers] [HKCU\Software\Skype] [HKCU\Software\Snapfish] [HKCU\Software\Sony Ericsson2] [HKCU\Software\Sony Ericsson] [HKCU\Software\SubSystems] [HKCU\Software\Symantec] [HKCU\Software\Sysinternals] [HKCU\Software\Tarobot] [HKCU\Software\The Complete Genealogy Reporter] [HKCU\Software\TomTom] [HKCU\Software\TorrentAid] [HKCU\Software\Trolltech] [HKCU\Software\VB and VBA Program Settings] [HKCU\Software\Veoh] [HKCU\Software\Virgin] [HKCU\Software\Virtools] [HKCU\Software\Voxmobili] [HKCU\Software\YahooPartnerToolbar] [HKCU\Software\Yahoo] [HKCU\Software\Ytom] [HKCU\Software\Zylom] [HKCU\Software\ahead] [HKCU\Software\alcatel] [HKCU\Software\dscaler5] [HKCU\Software\eBay] [HKCU\Software\hilgraeve inc] [HKCU\Software\honestech] [HKCU\Software\keyhole.com] [HKCU\Software\novell] [HKCU\Software\pixelStorm] [HKCU\Software\shockwave.com] [HKCU\Software\xerox] [HKLM\Software\ ] [HKLM\Software\58f] [HKLM\Software\781] [HKLM\Software\8ec] [HKLM\Software\ACD Systems] [HKLM\Software\ALWIL Software] [HKLM\Software\Adobe Systems] [HKLM\Software\Adobe] [HKLM\Software\Ahead] [HKLM\Software\Analog Devices] [HKLM\Software\Apple Computer, Inc.] [HKLM\Software\ArcSoft] [HKLM\Software\Avance] [HKLM\Software\Big Fish Games] [HKLM\Software\BrowserChoice] [HKLM\Software\C07ft5Y] [HKLM\Software\CA561B] [HKLM\Software\CDDB] [HKLM\Software\Classes] [HKLM\Software\Clients] [HKLM\Software\CyberLink] [HKLM\Software\DivXMPEG] [HKLM\Software\DivXNetworks] [HKLM\Software\E-Press] [HKLM\Software\EPSON] [HKLM\Software\ESET] [HKLM\Software\Enter Casino] [HKLM\Software\Ericsson] [HKLM\Software\Europa Casino] [HKLM\Software\FRANCE TELECOM] [HKLM\Software\Fastlab_FRA] [HKLM\Software\GRETECH] [HKLM\Software\GamesBarSetup] [HKLM\Software\Gemplus] [HKLM\Software\Google] [HKLM\Software\Hercules Technologies] [HKLM\Software\Hercules] [HKLM\Software\HiDTV] [HKLM\Software\InstallShield] [HKLM\Software\Intel] [HKLM\Software\JavaSoft] [HKLM\Software\KasperskyLab] [HKLM\Software\L&H] [HKLM\Software\Labtec] [HKLM\Software\Lake] [HKLM\Software\Licenses] [HKLM\Software\Logitech] [HKLM\Software\MDC] [HKLM\Software\Macromedia] [HKLM\Software\Malwarebytes' Anti-Malware] [HKLM\Software\McAfee.com] [HKLM\Software\Micro Application] [HKLM\Software\MozillaPlugins] [HKLM\Software\Mozilla] [HKLM\Software\MyHeritage.com] [HKLM\Software\NewSoft] [HKLM\Software\NewTech Infosystems] [HKLM\Software\Notepad] [HKLM\Software\ODBC] [HKLM\Software\OrangePlayerTemp] [HKLM\Software\Orange] [HKLM\Software\PTECH] [HKLM\Software\Patchou] [HKLM\Software\Phonemonitor] [HKLM\Software\PixDiscount] [HKLM\Software\Policies] [HKLM\Software\PopCap] [HKLM\Software\Program Groups] [HKLM\Software\RealNetworks] [HKLM\Software\Reallusion] [HKLM\Software\Realtek Semiconductor Corp.] [HKLM\Software\Realtek] [HKLM\Software\RegTest1234] [HKLM\Software\RegisteredApplications] [HKLM\Software\RichFX] [HKLM\Software\S3R521] [HKLM\Software\SAGEM] [HKLM\Software\SSC Service Utility] [HKLM\Software\Schlumberger] [HKLM\Software\Secure] [HKLM\Software\SiS] [HKLM\Software\Silicon Integrated Systems Corp.] [HKLM\Software\Skype] [HKLM\Software\Smart Panel] [HKLM\Software\Sony Ericsson] [HKLM\Software\Swearware] [HKLM\Software\SymNRT] [HKLM\Software\Symantec] [HKLM\Software\TSS] [HKLM\Software\Teleca] [HKLM\Software\TomTom] [HKLM\Software\Virgin] [HKLM\Software\Virtools] [HKLM\Software\Voice] [HKLM\Software\Voxmobili] [HKLM\Software\Windows 3.1 Migration Status] [HKLM\Software\Windows] [HKLM\Software\Wise Solutions] [HKLM\Software\Xing Technology Corp.] [HKLM\Software\Yahoo] [HKLM\Software\acer] [HKLM\Software\agere] [HKLM\Software\creative tech] [HKLM\Software\iWin] [HKLM\Software\lameme] [HKLM\Software\mcafeeupdater] [HKLM\Software\motorola] [HKLM\Software\mozilla.org] [HKLM\Software\muvee Technologies] [HKLM\Software\novell] [HKLM\Software\optimidata] [HKLM\Software\rioport] [HKLM\Software\speedtouch] [HKLM\Software\thomson] [HKLM\Software\tpfmon] ---\\ Contenu des dossiers ProgramFiles/ProgramData (O43) O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers communs O43 - CFD:Common File Directory ----D- C:\Program Files\Windows NT O43 - CFD:Common File Directory ----D- C:\Program Files\MSN O43 - CFD:Common File Directory ----D- C:\Program Files\MSN Gaming Zone O43 - CFD:Common File Directory ----D- C:\Program Files\Messenger O43 - CFD:Common File Directory ----D- C:\Program Files\Windows Media Player O43 - CFD:Common File Directory ----D- C:\Program Files\Online Services O43 - CFD:Common File Directory ----D- C:\Program Files\ComPlus Applications O43 - CFD:Common File Directory ----D- C:\Program Files\Internet Explorer O43 - CFD:Common File Directory ----D- C:\Program Files\Outlook Express O43 - CFD:Common File Directory ----D- C:\Program Files\NetMeeting O43 - CFD:Common File Directory ----D- C:\Program Files\Movie Maker O43 - CFD:Common File Directory ----D- C:\Program Files\Services en ligne O43 - CFD:Common File Directory --H-D- C:\Program Files\WindowsUpdate O43 - CFD:Common File Directory ----D- C:\Program Files\microsoft frontpage O43 - CFD:Common File Directory ----D- C:\Program Files\xerox O43 - CFD:Common File Directory ----D- C:\Program Files\sisagp O43 - CFD:Common File Directory --H-D- C:\Program Files\InstallShield Installation Information O43 - CFD:Common File Directory --H-D- C:\Program Files\Uninstall Information O43 - CFD:Common File Directory ----D- C:\Program Files\Realtek AC97 O43 - CFD:Common File Directory ----D- C:\Program Files\Adobe O43 - CFD:Common File Directory ----D- C:\Program Files\NewTech Infosystems O43 - CFD:Common File Directory ----D- C:\Program Files\CyberLink O43 - CFD:Common File Directory ----D- C:\Program Files\Thomson O43 - CFD:Common File Directory ----D- C:\Program Files\OrangeHSS O43 - CFD:Common File Directory ----D- C:\Program Files\SAGEM O43 - CFD:Common File Directory ----D- C:\Program Files\SiSLan O43 - CFD:Common File Directory ----D- C:\Program Files\SiS VGA Utilities V3.68 O43 - CFD:Common File Directory ----D- C:\Program Files\Java O43 - CFD:Common File Directory ----D- C:\Program Files\Wanadoo O43 - CFD:Common File Directory ----D- C:\Program Files\Wanadoo Messager O43 - CFD:Common File Directory ----D- C:\Program Files\PMU O43 - CFD:Common File Directory ----D- C:\Program Files\Logitech O43 - CFD:Common File Directory ----D- C:\Program Files\MSN Messenger O43 - CFD:Common File Directory ----D- C:\Program Files\Securitoo O43 - CFD:Common File Directory ----D- C:\Program Files\MSECache O43 - CFD:Common File Directory ----D- C:\Program Files\Hercules O43 - CFD:Common File Directory ----D- C:\Program Files\Windows Live SkyDrive O43 - CFD:Common File Directory ----D- C:\Program Files\Microsoft O43 - CFD:Common File Directory ----D- C:\Program Files\Microsoft Office O43 - CFD:Common File Directory ----D- C:\Program Files\Plus! O43 - CFD:Common File Directory ----D- C:\Program Files\ZHPDiag O43 - CFD:Common File Directory ----D- C:\Program Files\www.freewordexcelpassword.com O43 - CFD:Common File Directory ----D- C:\Program Files\Windows Live Safety Center O43 - CFD:Common File Directory ----D- C:\Program Files\Microsoft SQL Server Compact Edition O43 - CFD:Common File Directory ----D- C:\Program Files\Google O43 - CFD:Common File Directory ----D- C:\Program Files\Windows Live Toolbar O43 - CFD:Common File Directory ----D- C:\Program Files\Microsoft Sync Framework O43 - CFD:Common File Directory ----D- C:\Program Files\Alwil Software O43 - CFD:Common File Directory ----D- C:\Program Files\Microsoft Silverlight O43 - CFD:Common File Directory ----D- C:\Program Files\Defenza O43 - CFD:Common File Directory ----D- C:\Program Files\Livestation O43 - CFD:Common File Directory ----D- C:\Program Files\OpenAL O43 - CFD:Common File Directory ----D- C:\Program Files\TomTom International B.V O43 - CFD:Common File Directory ----D- C:\Program Files\Reference Assemblies O43 - CFD:Common File Directory ----D- C:\Program Files\FoxTarot4 O43 - CFD:Common File Directory ----D- C:\Program Files\MSBuild O43 - CFD:Common File Directory ----D- C:\Program Files\Microsoft Visual Studio 8 O43 - CFD:Common File Directory ----D- C:\Program Files\Microsoft.NET O43 - CFD:Common File Directory ----D- C:\Program Files\Microsoft Visual Studio O43 - CFD:Common File Directory ----D- C:\Program Files\Real O43 - CFD:Common File Directory ----D- C:\Program Files\epson O43 - CFD:Common File Directory ----D- C:\Program Files\Smart Panel O43 - CFD:Common File Directory ----D- C:\Program Files\Microsoft Works O43 - CFD:Common File Directory ----D- C:\Program Files\trend micro O43 - CFD:Common File Directory ----D- C:\Program Files\TomTom HOME O43 - CFD:Common File Directory ----D- C:\Program Files\Microsoft Office Outlook Connector O43 - CFD:Common File Directory ----D- C:\Program Files\Yahoo! O43 - CFD:Common File Directory ----D- C:\Program Files\Apple Software Update O43 - CFD:Common File Directory ----D- C:\Program Files\QuickTime O43 - CFD:Common File Directory ----D- C:\Program Files\Malwarebytes' Anti-Malware O43 - CFD:Common File Directory ----D- C:\Program Files\VideoLAN O43 - CFD:Common File Directory ----D- C:\Program Files\Ahead O43 - CFD:Common File Directory ----D- C:\Program Files\Astonsoft O43 - CFD:Common File Directory ----D- C:\Program Files\Seagrand O43 - CFD:Common File Directory ----D- C:\Program Files\QuickZip4 O43 - CFD:Common File Directory ----D- C:\Program Files\MessengerPlus! 3 O43 - CFD:Common File Directory ----D- C:\Program Files\Messenger Plus! Live O43 - CFD:Common File Directory ----D- C:\Program Files\jv16 PowerTools O43 - CFD:Common File Directory ----D- C:\Program Files\Windows Media Connect 2 O43 - CFD:Common File Directory ----D- C:\Program Files\DivX O43 - CFD:Common File Directory ----D- C:\Program Files\Symantec O43 - CFD:Common File Directory ----D- C:\Program Files\SymNetDrv O43 - CFD:Common File Directory ----D- C:\Program Files\Microsoft LifeCam O43 - CFD:Common File Directory ----D- C:\Program Files\Skype O43 - CFD:Common File Directory ----D- C:\Program Files\Kaspersky Lab O43 - CFD:Common File Directory ----D- C:\Program Files\Fastlab Print Service O43 - CFD:Common File Directory ----D- C:\Program Files\PixDiscount O43 - CFD:Common File Directory ----D- C:\Program Files\XnView O43 - CFD:Common File Directory ----D- C:\Program Files\Microsoft Carioca O43 - CFD:Common File Directory ----D- C:\Program Files\Microsoft Sites publics français O43 - CFD:Common File Directory ----D- C:\Program Files\Macrogaming O43 - CFD:Common File Directory ----D- C:\Program Files\Reallusion O43 - CFD:Common File Directory ----D- C:\Program Files\Norton Security Scan O43 - CFD:Common File Directory ----D- C:\Program Files\Picasa2 O43 - CFD:Common File Directory ----D- C:\Program Files\Virtools O43 - CFD:Common File Directory ----D- C:\Program Files\Eurobarre O43 - CFD:Common File Directory ----D- C:\Program Files\Microsoft CAPICOM 2.1.0.2 O43 - CFD:Common File Directory ----D- C:\Program Files\TomTom DesktopSuite O43 - CFD:Common File Directory ----D- C:\Program Files\Windows Live O43 - CFD:Common File Directory ----D- C:\Program Files\Micro Application O43 - CFD:Common File Directory ----D- C:\Program Files\Gamenext O43 - CFD:Common File Directory ----D- C:\Program Files\GamesBar O43 - CFD:Common File Directory ----D- C:\Program Files\Mozilla Firefox O43 - CFD:Common File Directory ----D- C:\Program Files\Sony Ericsson O43 - CFD:Common File Directory ----D- C:\Program Files\Disc2Phone O43 - CFD:Common File Directory ----D- C:\Program Files\MSXML 4.0 O43 - CFD:Common File Directory ----D- C:\Program Files\Orange O43 - CFD:Common File Directory ----D- C:\Program Files\Veoh Networks O43 - CFD:Common File Directory ----D- C:\Program Files\TomTom HOME 2 O43 - CFD:Common File Directory ----D- C:\Program Files\Audacity O43 - CFD:Common File Directory ----D- C:\Program Files\Everest Poker O43 - CFD:Common File Directory ----D- C:\Program Files\SSC Service Utility O43 - CFD:Common File Directory ----D- C:\Program Files\Smartphone Studio O43 - CFD:Common File Directory ----D- C:\Program Files\MyPhoneExplorer O43 - CFD:Common File Directory ----D- C:\Program Files\GRETECH O43 - CFD:Common File Directory ----D- C:\Program Files\Zylom Games O43 - CFD:Common File Directory ----D- C:\Program Files\DVBT Application O43 - CFD:Common File Directory ----D- C:\Program Files\ArcSoft O43 - CFD:Common File Directory ----D- C:\Program Files\MyHeritage O43 - CFD:Common File Directory ----D- C:\Program Files\ESET O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\Microsoft Shared O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\SpeechEngines O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\ODBC O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\System O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\MSSoap O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\Services O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\InstallShield O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\Adobe O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\NewTech Infosystems O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\muvee Technologies O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\DESIGNER O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\Real O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\Java O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\Logitech O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\xing shared O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\ACD Systems O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\Symantec Shared O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\Adobe Systems Shared O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\Micro Application Shared O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\Teleca Shared O43 - CFD:Common File Directory -SH-D- C:\Program Files\Fichiers Communs\WindowsLiveInstaller O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\ArcSoft O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\France Telecom O43 - CFD:Common File Directory ----D- C:\Program Files\Fichiers Communs\Windows Live ---\\ Derniers fichiers modifiés ou crées sous Windows et System32 (O44) O44 - LFC:[MD5.789139BA640D57B8C1DC4496E06A67DB] - 14/09/2010 - 18:02:46 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\rkill.log [389] O44 - LFC:[MD5.48AC75EE82ED723F1DD85C060FF336C3] - 14/09/2010 - 17:54:16 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\setupact.log [215244] O44 - LFC:[MD5.C7DD7D9739785BD3A6B8499EEC1DEE7E] - 14/09/2010 - 17:17:14 ---A- . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys [38224] O44 - LFC:[MD5.67B48A903430C6D4FB58CBACA1866601] - 14/09/2010 - 17:17:11 ---A- . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\WINDOWS\System32\drivers\mbam.sys [20952] O44 - LFC:[MD5.6A2CB42966136854F4464516FBB4AE72] - 14/09/2010 - 16:58:10 -S-A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\bootstat.dat [2048] O44 - LFC:[MD5.C9DD76D0EF94637C77FF8CA5E0FB0684] - 14/09/2010 - 12:14:02 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system.ini [227] O44 - LFC:[MD5.3E6DE4465BAE11A7D184D512E5016D21] - 14/09/2010 - 12:14:02 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\win.ini [936] O44 - LFC:[MD5.28BF9F8CD352CDFC9510CC0161CF47E9] - 14/09/2010 - 12:14:02 RSHA- . (.Pas de propriétaire - Pas de description.) -- C:\boot.ini [234] O44 - LFC:[MD5.3E771EE139D9D404A3BEEB3AB8B3C64F] - 14/09/2010 - 12:13:44 --HA- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\System32\FFASTLOG.TXT [23967] O44 - LFC:[MD5.CAA9346BF6B060A647D9997F6780F7BF] - 14/09/2010 - 12:13:38 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\wiadebug.log [159] O44 - LFC:[MD5.8693E93172779C9C786D6C567E658235] - 14/09/2010 - 12:12:08 -SHA- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\System32\drivers\fidbox.dat [32] O44 - LFC:[MD5.585CAC429A6C6B3B70E4C64AF477BBB0] - 14/09/2010 - 12:12:08 -SHA- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\System32\drivers\fidbox.idx [32] O44 - LFC:[MD5.D9319A2593B9A39B17F344E4F250F949] - 14/09/2010 - 12:12:08 -SHA- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\System32\drivers\fidbox2.dat [32] O44 - LFC:[MD5.F0AFAC3C9E9B5C1593049F81B189E58C] - 14/09/2010 - 12:12:08 -SHA- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\System32\drivers\fidbox2.idx [32] O44 - LFC:[MD5.00000000000000000000000000000000] - 14/09/2010 - 12:12:06 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\WindowsUpdate.log [1958470] O44 - LFC:[MD5.760A0B80805EE2E121479CB067508785] - 14/09/2010 - 12:12:04 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\SchedLgU.Txt [32534] O44 - LFC:[MD5.815573D38EA98ACEDBBD620A9849F34D] - 14/09/2010 - 12:12:04 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\wiaservc.log [50] O44 - LFC:[MD5.81051BCC2CF1BEDF378224B0A93E2877] - 14/09/2010 - 12:11:26 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\System32\jh5n1.log [2] O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 14/09/2010 - 12:01:26 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\0.log [0] O44 - LFC:[MD5.22B3D6A461D5D46902B39DD3EE5B1803] - 13/09/2010 - 22:23:10 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\lsrslt.ini [3026] O44 - LFC:[MD5.F66166B93445D959CE36D9E86CBAA2AF] - 13/09/2010 - 21:00:44 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\System32\wpa.dbl [1158] O44 - LFC:[MD5.F588AEFB69099C7C8DEE6F85D59FC163] - 13/09/2010 - 20:56:10 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\System32\drivers\jgsac.sys [842752] O44 - LFC:[MD5.ED74A5440C7F33D1DCD2D40262B252EA] - 13/09/2010 - 20:54:56 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\setupapi.log [783061] O44 - LFC:[MD5.94DE45A849B9D3750B1432B457DD488A] - 13/09/2010 - 20:53:12 ---A- . (.ekrytlhafs Corporation - wmfpymfz DLL.) -- C:\WINDOWS\System32\dloB947.dll [746496] O44 - LFC:[MD5.D41D8CD98F00B204E9800998ECF8427E] - 13/09/2010 - 20:53:10 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\System32\dloB947.tmp [0] O44 - LFC:[MD5.00C55A4FC6445BD916959BFD1E01B8F5] - 13/09/2010 - 20:43:34 ---A- . (.Smart Link - SLRunDll.) -- C:\WINDOWS\OLDB5EA.tmp [61440] O44 - LFC:[MD5.00C55A4FC6445BD916959BFD1E01B8F5] - 13/09/2010 - 20:43:33 ---A- . (.Smart Link - SLRunDll.) -- C:\WINDOWS\slrundll.exe [61440] O44 - LFC:[MD5.B9730495E0CF674680121E34BD95A73B] - 13/09/2010 - 20:41:20 ---A- . (.CACE Technologies, Inc. - npf.sys (NT5/6 x86) Kernel Driver.) -- C:\WINDOWS\System32\drivers\npf.sys [50704] O44 - LFC:[MD5.B4D3CBC053E70143D350D6107B94952C] - 13/09/2010 - 20:41:20 ---A- . (.CACE Technologies, Inc. - packet.dll (NT5) Dynamic Link Library.) -- C:\WINDOWS\System32\Packet.dll [100880] O44 - LFC:[MD5.DAE5F233818083AF69E2E5133A50A2CB] - 13/09/2010 - 20:41:20 ---A- . (.CACE Technologies, Inc. - wpcap.dll Dynamic Link Library - based on l.) -- C:\WINDOWS\System32\wpcap.dll [281104] O44 - LFC:[MD5.619E6ACF8B8E251E4D6C2C859F3E80AE] - 13/09/2010 - 20:37:48 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\srun.log [12] O44 - LFC:[MD5.3C1161381116452C9E8062030EFE2CBE] - 12/09/2010 - 18:52:46 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\pfirewall.log [1444481] O44 - LFC:[MD5.0291D76BB530203B427473739419974C] - 12/09/2010 - 18:52:38 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\pfirewall.log.old [4196357] O44 - LFC:[MD5.9AD8BC94E97D4DF18372BE72F6A6D06D] - 22/08/2010 - 02:32:14 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\System32\FNTCACHE.DAT [368896] O44 - LFC:[MD5.DBECB980F3D3BEFC440F9A88DFD5178A] - 22/08/2010 - 02:15:34 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\FaxSetup.log [2048294] O44 - LFC:[MD5.513F08CC2BFE7CD84B747BA4E8E859E7] - 22/08/2010 - 02:15:34 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\KB982214.log [15228] O44 - LFC:[MD5.70B80FD5F1DFACB837EBB53A0D87879A] - 22/08/2010 - 02:15:34 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\comsetup.log [640562] O44 - LFC:[MD5.4265531A38C8D4A18315AF9CC8954C8F] - 22/08/2010 - 02:15:34 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\iis6.log [320263] O44 - LFC:[MD5.FBBD6CD17C12FF48B8C198BD8C1F26CD] - 22/08/2010 - 02:15:34 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\imsins.log [1374] O44 - LFC:[MD5.BF19B8591DC7734F06B27DEF5A823FE2] - 22/08/2010 - 02:15:34 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\msgsocm.log [102017] O44 - LFC:[MD5.C45DC8AA9B28D31DE02C5EF4758582BD] - 22/08/2010 - 02:15:34 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\ntdtcsetup.log [387450] O44 - LFC:[MD5.9B3981855174840CF22F35B94CFA645B] - 22/08/2010 - 02:15:34 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\ocgen.log [981985] O44 - LFC:[MD5.EE85DE267D232FAB8A9056E319059285] - 22/08/2010 - 02:15:34 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\ocmsn.log [106241] O44 - LFC:[MD5.E16B32E84DA8150A37CC4B36CBE5F25A] - 22/08/2010 - 02:15:34 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\tsoc.log [782137] O44 - LFC:[MD5.0D9E2EC1E303C0FDB267C6DFCD104DA3] - 22/08/2010 - 02:15:24 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\KB2115168.log [20415] O44 - LFC:[MD5.EC23A40ED9183FBC6FD836D6031A1C9B] - 22/08/2010 - 02:15:24 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\imsins.BAK [1374] O44 - LFC:[MD5.F0FC502F82B707580ADE1EE2912600C8] - 22/08/2010 - 02:15:16 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\KB981852.log [16906] O44 - LFC:[MD5.0C1A5EC23FD23EAEBBB584502EE49883] - 22/08/2010 - 02:14:56 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\KB2079403.log [21024] O44 - LFC:[MD5.A1DFB72237BDA421B7C7D9D1927DF007] - 22/08/2010 - 02:14:52 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\updspapi.log [408492] O44 - LFC:[MD5.0009B373AA505672B5D8C6BFC7BD831E] - 22/08/2010 - 02:12:38 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\System32\PerfStringBackup.INI [1209126] O44 - LFC:[MD5.27FA3D4252649B73E07E87E3029A7B75] - 22/08/2010 - 02:12:38 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\System32\perfc009.dat [89826] O44 - LFC:[MD5.01C0B1995EFFE4B682635CDF277BE43C] - 22/08/2010 - 02:12:38 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\System32\perfc00C.dat [107146] O44 - LFC:[MD5.A45C7C4522C3C629318406939FE35B4B] - 22/08/2010 - 02:12:38 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\System32\perfh009.dat [483014] O44 - LFC:[MD5.9CD85B02EA444B25F802BACF792050CC] - 22/08/2010 - 02:12:38 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\System32\perfh00C.dat [556758] O44 - LFC:[MD5.0A20F4935B928FF5B5C910F3C54A8C29] - 22/08/2010 - 02:09:30 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\KB2183461-IE8.log [17737] O44 - LFC:[MD5.6C7B144E3E712C3D05B3A771E51015A7] - 22/08/2010 - 02:08:50 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\KB2160329.log [15048] O44 - LFC:[MD5.CA8D8DEA64B0E178A8DBAAAEAE4E5B89] - 22/08/2010 - 02:08:40 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\KB980436.log [14449] O44 - LFC:[MD5.79433FA99D394B25B11A3163547F6399] - 22/08/2010 - 02:03:46 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\KB981997.log [8106] O44 - LFC:[MD5.657938960A1E5750EAF77DDCD961B41A] - 22/08/2010 - 02:02:46 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\KB982665.log [13201] ---\\ Opérations et fonctions au démarrage de Windows Explorer (O46) O46 - SEH:ShellExecuteHooks - URL Exec Hook - {AEB6717E-7E19-11d0-97EE-00C04FD91972} - shell32.dll O46 - SEH:ShellExecuteHooks - Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll ---\\ Export de clé d'application autorisée (ECAA) (O47) O47 - AAKE:Key Export SP - "%windir%\system32\sessmgr.exe" [Enabled] .(.Microsoft Corporation - Gestionnaire de session de l'aide sur le Bureau à distance de Microsoft®.) -- C:\WINDOWS\system32\sessmgr.exe O47 - AAKE:Key Export SP - "C:\Program Files\Shareaza\Shareaza.exe" [Enabled] .(.Pas de propriétaire - Pas de description.) (.not file.) -- C:\Program Files\Shareaza\Shareaza.exe O47 - AAKE:Key Export SP - "C:\Program Files\Yahoo!\Messenger\YServer.exe" [Disabled] .(.Yahoo! Inc. - YServer Module.) (.not file.) -- C:\Program Files\Yahoo!\Messenger\YServer.exe O47 - AAKE:Key Export SP - "C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe" [Disabled] .(.Yahoo! Inc. - Yahoo! Messenger.) (.not file.) -- C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe O47 - AAKE:Key Export SP - "C:\Program Files\Symantec\LiveUpdate\LUAll.exe" [Enabled] .(.Symantec Corporation - LiveUpdate Wizard.) (.not file.) -- C:\Program Files\Symantec\LiveUpdate\LUAll.exe O47 - AAKE:Key Export SP - "%windir%\Network Diagnostic\xpnetdiag.exe" [Enabled] .(.Microsoft Corporation - Network Diagnostic for Windows XP.) (.not file.) -- C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O47 - AAKE:Key Export SP - "C:\WINDOWS\System32\rtcshare.exe" [Enabled] .(.Microsoft Corporation - Partage de l'application RTC.) (.not file.) -- C:\WINDOWS\System32\rtcshare.exe O47 - AAKE:Key Export SP - "C:\Program Files\NetMeeting\conf.exe" [Enabled] .(.Microsoft Corporation - Windows® NetMeeting®.) (.not file.) -- C:\Program Files\NetMeeting\conf.exe O47 - AAKE:Key Export SP - "C:\Program Files\Internet Explorer\IEXPLORE.EXE" [Enabled] .(.Microsoft Corporation - Internet Explorer.) (.not file.) -- C:\Program Files\Internet Explorer\IEXPLORE.exe O47 - AAKE:Key Export SP - "C:\Program Files\Microsoft LifeCam\LifeExp.exe" [Enabled] .(.Microsoft Corporation - LifeExp.exe.) (.not file.) -- C:\Program Files\Microsoft LifeCam\LifeExp.exe O47 - AAKE:Key Export SP - "C:\Program Files\Reallusion\CrazyTalk for Skype\CT4Skype.exe" [Enabled] .(.Pas de propriétaire - CrazyTalk MFC Application.) (.not file.) -- C:\Program Files\Reallusion\CrazyTalk for Skype\CT4Skype.exe O47 - AAKE:Key Export SP - "C:\Program Files\Microsoft LifeCam\LifeCam.exe" [Enabled] .(.Microsoft Corporation - LifeCam.exe.) (.not file.) -- C:\Program Files\Microsoft LifeCam\LifeCam.exe O47 - AAKE:Key Export SP - "C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\avp.exe" [Enabled] .(.Kaspersky Lab - Kaspersky Anti-Virus.) (.not file.) -- C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\avp.exe O47 - AAKE:Key Export SP - "C:\Program Files\Skype\Phone\Skype.exe" [Disabled] .(.Skype Technologies S.A. - Skype. The whole world can talk for free..) (.not file.) -- C:\Program Files\Skype\Phone\Skype.exe O47 - AAKE:Key Export SP - "C:\Program Files\Veoh Networks\Veoh\VeohClient.exe" [Enabled] .(.Veoh Networks - Veoh Client.) (.not file.) -- C:\Program Files\Veoh Networks\Veoh\VeohClient.exe O47 - AAKE:Key Export SP - "C:\Program Files\Messenger\msmsgs.exe" [Enabled] .(.Microsoft Corporation - Windows Messenger.) (.not file.) -- C:\Program Files\Messenger\msmsgs.exe O47 - AAKE:Key Export SP - "C:\Program Files\Smartphone Studio\SPStudio.exe" [Disabled] .(.YTOM XIAO - SmartPhone Studio.) (.not file.) -- C:\Program Files\Smartphone Studio\SPStudio.exe O47 - AAKE:Key Export SP - "C:\Program Files\ArcSoft\TotalMedia 3\TotalMedia.exe" [Enabled] .(.ArcSoft, Inc. - ArcSoft TotalMedia.) (.not file.) -- C:\Program Files\ArcSoft\TotalMedia 3\TotalMedia.exe O47 - AAKE:Key Export SP - "C:\Documents and Settings\ALEX\Local Settings\Temp\stInstall.exe" [Enabled] .(.THOMSON Telecom Belgium - SpeedTouch Setup Wizard.) (.not file.) -- C:\Documents and Settings\ALEX\Local Settings\Temp\stInstall.exe O47 - AAKE:Key Export SP - "C:\Program Files\Thomson\ST330\service\st330service.exe" [Enabled] .(.Pas de propriétaire - Pas de description.) (.not file.) -- C:\Program Files\Thomson\ST330\service\st330service.exe O47 - AAKE:Key Export SP - "C:\Program Files\OrangeHSS\Connectivity\ConnectivityManager.exe" [Enabled] .(.France Telecom SA - Pas de description.) (.not file.) -- C:\Program Files\OrangeHSS\Connectivity\ConnectivityManager.exe O47 - AAKE:Key Export SP - "C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE" [Enabled] .(.Microsoft Corporation - Microsoft Office Outlook.) (.not file.) -- C:\Program Files\Microsoft Office\Office12\OUTLOOK.exe O47 - AAKE:Key Export SP - "C:\Program Files\Microsoft Office\Office12\groove.exe" [Enabled] .(.Microsoft Corporation - Microsoft Office Groove.) (.not file.) -- C:\Program Files\Microsoft Office\Office12\groove.exe O47 - AAKE:Key Export SP - "C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE" [Enabled] .(.Microsoft Corporation - Microsoft Office OneNote.) (.not file.) -- C:\Program Files\Microsoft Office\Office12\ONENOTE.exe O47 - AAKE:Key Export SP - "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" [Enabled] .(.Microsoft Corporation - Windows Live Messenger.) (.not file.) -- C:\Program Files\Windows Live\Messenger\msnmsgr.exe O47 - AAKE:Key Export SP - "C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe" [Enabled] .(.Microsoft Corporation - Windows Live Sync.) (.not file.) -- C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe O47 - AAKE:Key Export SP - "C:\WINDOWS\pchealth\helpctr\binaries\HelpCtr.exe" [Enabled] .(.Microsoft Corporation - Microsoft Help and Support Center.) (.not file.) -- C:\WINDOWS\pchealth\helpctr\binaries\HelpCtr.exe O47 - AAKE:Key Export SP - "\??\C:\WINDOWS\system32\winlogon.exe" [Enabled] .(.Microsoft Corporation - Application d'ouverture de session Windows NT.) (.not file.) -- C:\WINDOWS\system32\winlogon.exe O47 - AAKE:Key Export DP - "%windir%\system32\sessmgr.exe" [Enabled] .(.Microsoft Corporation - Gestionnaire de session de l'aide sur le Bureau à distance de Microsoft®.) -- C:\WINDOWS\system32\sessmgr.exe O47 - AAKE:Key Export DP - "%windir%\Network Diagnostic\xpnetdiag.exe" [Enabled] .(.Microsoft Corporation - Network Diagnostic for Windows XP.) -- C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O47 - AAKE:Key Export DP - "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" [Enabled] .(.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files\Windows Live\Messenger\msnmsgr.exe O47 - AAKE:Key Export DP - "C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe" [Enabled] .(.Microsoft Corporation - Windows Live Sync.) -- C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe ---\\ Déni du service (Local Security Authority) (LSA) (O48) O48 - LSA:Local Security Authority Authentication Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\WINDOWS\System32\msv1_0.dll O48 - LSA:Local Security Authority Notification Packages . (.Microsoft Corporation - Moteur du client de l'Éditeur de configuration de sécurité Windows.) -- C:\WINDOWS\System32\scecli.dll O48 - LSA:Local Security Authority Security Packages . (.Microsoft Corporation - Microsoft Authentication Package v1.0.) -- C:\WINDOWS\System32\msv1_0.dll ---\\ Image File Execution Options (IFEO) (O50) O50 - IFEO:Image File Execution Options - Your Image File Name Here without a path - ntsd -d ---\\ MountPoints2 Shell Key (MPSK) (O51) O51 - MPSK:{5181efb7-bca7-11dc-a5dc-4d6564696130}\Shell\AutoRun\command. (.Pas de propriétaire - Pas de description.) -- K:\InstallTomTomHOME.exe (.not file.) O51 - MPSK:{9e49e44c-3296-11db-a548-4d6564696130}\Shell\AutoRun\command. (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL AdobeR.exe e (.not file.) O51 - MPSK:{bd765032-312c-11db-a546-4d6564696130}\Shell\AutoRun\command. (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL AdobeR.exe e (.not file.) O51 - MPSK:{cd1c8b6a-56d8-11db-a555-4d6564696130}\Shell\AutoRun\command. (.Pas de propriétaire - Pas de description.) -- J:\InstallTomTomHOME.exe (.not file.) ---\\ Trojan Driver Search Data (HKLM)(TDSD) (O52) O52 - TDSD: \Drivers32\"msacm.trspch"="tssoft32.acm" . (.DSP GROUP, INC. - Codec audio TrueSpeech DSP Group pour MSACM V3.50.) -- C:\WINDOWS\System32\tssoft32.acm O52 - TDSD: \Drivers32\"vidc.cvid"="iccvid.dll" . (.Radius Inc. - Cinepak® Codec.) -- C:\WINDOWS\System32\iccvid.dll O52 - TDSD: \Drivers32\"vidc.iv31"="ir32_32.dll" . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\System32\ir32_32.dll O52 - TDSD: \Drivers32\"vidc.iv32"="ir32_32.dll" . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\System32\ir32_32.dll O52 - TDSD: \Drivers32\"vidc.iv41"="ir41_32.ax" . (.Intel Corporation - Intel Indeo® Video 4.5.) -- C:\WINDOWS\System32\ir41_32.ax O52 - TDSD: \Drivers32\"msacm.sl_anet"="sl_anet.acm" . (.Sipro Lab Telecom Inc. - Audio codec for MS ACM.) -- C:\WINDOWS\System32\sl_anet.acm O52 - TDSD: \Drivers32\"msacm.iac2"="C:\WINDOWS\system32\iac25_32.ax" . (.Intel Corporation - Indeo® audio software.) -- C:\WINDOWS\system32\iac25_32.ax O52 - TDSD: \Drivers32\"vidc.iv50"="ir50_32.dll" . (.Intel Corporation - Intel Indeo® video 5.10.) -- C:\WINDOWS\System32\ir50_32.dll O52 - TDSD: \Drivers32\"msacm.l3acm"="L3codeca.acm" . (.Kristal Studio - MPEG Layer-3 Audio Codec for DivX.) -- C:\WINDOWS\System32\L3codeca.acm O52 - TDSD: \Drivers32\"vidc.DIV3"="DivXc32.dll" . (.Kristal Studio - DivX MPEG-4 Video Codec.) -- C:\WINDOWS\System32\DivXc32.dll O52 - TDSD: \Drivers32\"vidc.DIVX"="DivX.dll" . (.DivX, Inc. - DivX.) -- C:\WINDOWS\System32\DivX.dll O52 - TDSD: \Drivers32\"vidc.yv12"="DivX.dll" . (.DivX, Inc. - DivX.) -- C:\WINDOWS\System32\DivX.dll O52 - TDSD: \drivers.desc\"sl_anet.acm"="Sipro Lab Telecom Audio Codec" . (.Sipro Lab Telecom Inc. - Audio codec for MS ACM.) -- C:\WINDOWS\System32\sl_anet.acm O52 - TDSD: \drivers.desc\"C:\WINDOWS\system32\iac25_32.ax"="Indeo® audio software" . (.Intel Corporation - Indeo® audio software.) -- C:\WINDOWS\system32\iac25_32.ax O52 - TDSD: \drivers.desc\"ir50_32.dll"="Indeo® video 5.10" . (.Pas de propriétaire - Pas de description.) -- (.not file.) O52 - TDSD: \drivers.desc\"C:\WINDOWS\system32\l3codeca.acm"="Fraunhofer IIS MPEG Layer-3 Codec" . (.Kristal Studio - MPEG Layer-3 Audio Codec for DivX.) -- C:\WINDOWS\system32\l3codeca.acm O52 - TDSD: \drivers.desc\"ir32_32.dll"="Indeo® video R3.2 by Intel" . (.Pas de propriétaire - Pas de description.) -- (.not file.) O52 - TDSD: \drivers.desc\"ir41_32.ax"="Indeo® video interactive R4.3 by Intel" . (.Pas de propriétaire - Pas de description.) -- (.not file.) O52 - TDSD: \drivers.desc\"iyvu9_32.dll"="Indeo® video Raw YVU9 by Intel" . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\System32\iyvu9_32.dll O52 - TDSD: \drivers.desc\"DivXc32.dll"="DivX MPEG-4 Video Codec" . (.Kristal Studio - DivX MPEG-4 Video Codec.) -- C:\WINDOWS\System32\DivXc32.dll O52 - TDSD: \drivers.desc\"DivXa32.acm"="DivX WMA Audio Codec" . (.Kristal Studi - DivX WMA Audi.) -- C:\WINDOWS\System32\DivXa32.acm O52 - TDSD: \drivers.desc\"L3codeca.acm"="MPEG Layer-3 Professional Audio Codec" . (.Kristal Studio - MPEG Layer-3 Audio Codec for DivX.) -- C:\WINDOWS\System32\L3codeca.acm O52 - TDSD: \drivers.desc\"DivXc32f.dll"="" . (.Pas de propriétaire - Pas de description.) -- (.not file.) O52 - TDSD: \drivers.desc\"DivX.dll"="DivX 6.7.0 Codec" . (.Pas de propriétaire - Pas de description.) -- (.not file.) O52 - TDSD: \drivers.desc\"tssoft32.acm"="tssoft32.acm" . (.DSP GROUP, INC. - Codec audio TrueSpeech DSP Group pour MSACM V3.50.) -- C:\WINDOWS\System32\tssoft32.acm O52 - TDSD: \drivers.desc\"iccvid.dll"="iccvid.dll" . (.Radius Inc. - Cinepak® Codec.) -- C:\WINDOWS\System32\iccvid.dll ---\\ ShareTools MSconfig StartupReg (SMSR) (O53) O53 - SMSR:HKLM\...\startupreg\Google Desktop Search [Key] . (.Pas de propriétaire - Pas de description.) -- C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe O53 - SMSR:HKLM\...\startupreg\GrooveMonitor [Key] . (.Microsoft Corporation - GrooveMonitor Utility.) -- C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe O53 - SMSR:HKLM\...\startupreg\LifeCam [Key] . (.Microsoft Corporation - LifeExp.exe.) -- C:\Program Files\Microsoft LifeCam\LifeExp.exe O53 - SMSR:HKLM\...\startupreg\Livestation [Key] . (.Livestation - Livestation.) -- C:\Program Files\Livestation\Livestation.exe O53 - SMSR:HKLM\...\startupreg\LogitechVideoRepair [Key] . (.Labtec Inc. - Logitech QuickCam Startup Application.) -- C:\Program Files\Logitech\Video\ISStart.exe O53 - SMSR:HKLM\...\startupreg\LogitechVideoTray [Key] . (.Labtec Inc. - ImageStudio Tray Application.) -- C:\Program Files\Logitech\Video\LogiTray.exe O53 - SMSR:HKLM\...\startupreg\MessengerPlus3 [Key] . (.Patchou - Messenger Plus!.) -- C:\Program Files\MessengerPlus! 3\MsgPlus.exe O53 - SMSR:HKLM\...\startupreg\MSMSGS [Key] . (.Microsoft Corporation - Windows Messenger.) -- C:\Program Files\Messenger\msmsgs.exe O53 - SMSR:HKLM\...\startupreg\msnmsgr [Key] . (.Microsoft Corporation - Windows Live Messenger.) -- C:\Program Files\Windows Live\Messenger\msnmsgr.exe O53 - SMSR:HKLM\...\startupreg\ntiMUI [Key] . (.Pas de propriétaire - Pas de description.) -- C:\Program Files\NewTech Infosystems\NTI CD & DVD-Maker 7\ntiMUI.exe O53 - SMSR:HKLM\...\startupreg\OrangePlayer [Key] . (.Orange - Media Player.) -- c:\program files\orange\media player\Media Player.exe O53 - SMSR:HKLM\...\startupreg\Picasa Media Detector [Key] . (.Google Inc. - Picasa.) -- C:\Program Files\Picasa2\PicasaMediaDetector.exe O53 - SMSR:HKLM\...\startupreg\QuickTime Task [Key] . (.Apple Computer, Inc. - QuickTime Task.) -- C:\Program Files\QuickTime\qttask.exe O53 - SMSR:HKLM\...\startupreg\RemoteControl [Key] . (.Cyberlink Corp. - PowerDVD RC Service.) -- C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe O53 - SMSR:HKLM\...\startupreg\Sony Ericsson PC Suite [Key] . (.Sony Ericsson Mobile Communications AB - Application Launcher.) -- C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe O53 - SMSR:HKLM\...\startupreg\SunJavaUpdateSched [Key] . (.Sun Microsystems, Inc. - Java Platform SE binary.) -- C:\Program Files\Java\jre6\bin\jusched.exe O53 - SMSR:HKLM\...\startupreg\swg [Key] . (.Google Inc. - GoogleToolbarNotifier.) -- C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe O53 - SMSR:HKLM\...\startupreg\TM Control [Key] . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system32\TMController.exe O53 - SMSR:HKLM\...\startupreg\TomTomHOME.exe [Key] . (.TomTom - System Tray application for TomTom HOME.) -- C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe O53 - SMSR:HKLM\...\startupreg\Veoh [Key] . (.Veoh Networks - Veoh Client.) -- C:\Program Files\Veoh Networks\Veoh\VeohClient.exe ---\\ Microsoft Control Security Providers (MCSP) (O54) O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - Client DPA pour plate-forme 32 bit.) -- C:\WINDOWS\system32\msapsspc.dll O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - TLS / SSL Security Provider.) -- C:\WINDOWS\system32\schannel.dll O54 - MCSP:[HKLM\...\CurrentControlSet\Control] - (SecurityProviders) - (.Microsoft Corporation - Package d'authentification Digest SSPI.) -- C:\WINDOWS\system32\digest.dll O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - Client DPA pour plate-forme 32 bit.) -- C:\WINDOWS\system32\msapsspc.dll O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - TLS / SSL Security Provider.) -- C:\WINDOWS\system32\schannel.dll O54 - MCSP:[HKLM\...\ControlSet001\Control] - (SecurityProviders) - (.Microsoft Corporation - Package d'authentification Digest SSPI.) -- C:\WINDOWS\system32\digest.dll ---\\ Microsoft Windows Policies System (MWPS) (O55) O55 - MWPS:[HKLM\...\Policies\System] - "dontdisplaylastusername"=0 O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticecaption"= O55 - MWPS:[HKLM\...\Policies\System] - "legalnoticetext"= O55 - MWPS:[HKLM\...\Policies\System] - "shutdownwithoutlogon"=1 O55 - MWPS:[HKLM\...\Policies\System] - "undockwithoutlogon"=1 ---\\ Microsoft Windows Policies Explorer (MWPE) (O56) O56 - MWPE:[HKCU\...\policies\Explorer] - "NoDriveTypeAutoRun"= O56 - MWPE:[HKLM\...\policies\Explorer] - "HonorAutoRunSetting"=1 ---\\ Liste des Drivers Système (SDL) (O58) O58 - SDL:[MD5.80D317BD1C3DBC5D4FE7B1678C60CADD] - 05/08/2004 - 04:00:00 ---A- . (.Parallel Technologies, Inc. - Parallel Technologies DirectParallel IO Library.) -- C:\WINDOWS\system32\drivers\ptilink.sys O58 - SDL:[MD5.C9B25AE9B8ABD983C5AD3F8CBFAB0F9C] - 05/08/2004 - 04:00:00 ---A- . (.RAVISENT Technologies Inc. - Pilote principal CineMaster C 1.2 WDM.) -- C:\WINDOWS\system32\drivers\cinemst2.sys O58 - SDL:[MD5.9624293E55AD405415862B504CA95B73] - 05/08/2004 - 04:00:00 ---A- . (.Compaq Computer Corporation - Compaq PA-1 Player Driver.) -- C:\WINDOWS\system32\drivers\cpqdap01.sys O58 - SDL:[MD5.BE984D604D91C217355CDD3737AAD25D] - 05/08/2004 - 04:00:00 ---A- . (.S3/Diamond Multimedia Systems - NikeDrv Usb Driver.) -- C:\WINDOWS\system32\drivers\nikedrv.sys O58 - SDL:[MD5.A56FE08EC7473E8580A390BB1081CDD7] - 05/08/2004 - 04:00:00 ---A- . (.S3/Diamond Multimedia Systems - Rio8Drv.sys Usb Driver.) -- C:\WINDOWS\system32\drivers\rio8drv.sys O58 - SDL:[MD5.0A854DF84C77A0BE205BFEAB2AE4F0EC] - 05/08/2004 - 04:00:00 ---A- . (.S3/Diamond Multimedia Systems - RioDrv Usb Driver.) -- C:\WINDOWS\system32\drivers\riodrv.sys O58 - SDL:[MD5.92AE420BE14B0D97D14DAC4ABA22A702] - 19/08/2005 - 09:31:00 ---A- . (.Realtek Semiconductor Corp. - Realtek AC'97 Audio Driver (WDM).) -- C:\WINDOWS\system32\drivers\alcxwdm.sys O58 - SDL:[MD5.D74A8EC75305F1D3CFDE7C7FC1BD62A9] - 05/08/2004 - 04:00:00 ---A- . (.Toshiba Corporation - WDM Toshiba Tecra Video Capture Driver.) -- C:\WINDOWS\system32\drivers\tsbvcap.sys O58 - SDL:[MD5.55E01061C74A8CEFFF58DC36114A8D3F] - 05/08/2004 - 04:00:00 ---A- . (.RAVISENT Technologies Inc. - CineMaster C WDM DVD Minidriver.) -- C:\WINDOWS\system32\drivers\vdmindvd.sys O58 - SDL:[MD5.4C9577888C53243E2991456F510488A1] - 08/12/2003 - 10:53:46 ---A- . (.THOMSON - WDM Driver.) -- C:\WINDOWS\system32\drivers\alcaudsl.sys O58 - SDL:[MD5.8525B88D8E902E7B587FCA034B298693] - 08/12/2003 - 10:53:38 ---A- . (.THOMSON - Helper.) -- C:\WINDOWS\system32\drivers\alcacr.sys O58 - SDL:[MD5.66065EF8736CD9A4EE0F8B02055F45B5] - 08/12/2003 - 10:53:42 ---A- . (.THOMSON - Helper.) -- C:\WINDOWS\system32\drivers\alcawh.sys O58 - SDL:[MD5.0940030D5A5869067CCC03E3B0B8DEC7] - 08/12/2003 - 10:53:48 ---A- . (.THOMSON - WAN Driver.) -- C:\WINDOWS\system32\drivers\alcan5wn.sys O58 - SDL:[MD5.E0C67BE430C6DE490D6CCAECFA071F9E] - 17/12/2004 - 16:14:44 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system32\drivers\UBHelper.sys O58 - SDL:[MD5.7F1C1F78D709C4A54CBB46EDE7E0B48D] - 02/11/2005 - 15:07:10 ---A- . (.NewTech Infosystems, Inc. - NTI CD-ROM Filter Driver.) -- C:\WINDOWS\system32\drivers\NTIDrvr.sys O58 - SDL:[MD5.8204C49CDE112F7B9C2F15707FE2CC5A] - 17/03/2005 - 21:48:00 ---A- . (.SiS Corporation - SiS PCI Fast Ethernet Adapter Driver.) -- C:\WINDOWS\system32\drivers\sisnic.sys O58 - SDL:[MD5.E3CF27C168A97018C9F9C7ECC335A761] - 13/07/2005 - 02:07:18 ---A- . (.Silicon Integrated Systems Corporation - SiS Compatible Super VGA Driver.) -- C:\WINDOWS\system32\drivers\sisgrp.sys O58 - SDL:[MD5.E14435CF5D555BDC2F35097E403B79C5] - 13/07/2005 - 02:48:02 ---A- . (.Silicon Integrated Systems Corporation - SiS VGA Driver Manager.) -- C:\WINDOWS\system32\drivers\srvkp.sys O58 - SDL:[MD5.B9730495E0CF674680121E34BD95A73B] - 13/09/2010 - 20:41:20 ---A- . (.CACE Technologies, Inc. - npf.sys (NT5/6 x86) Kernel Driver.) -- C:\WINDOWS\system32\drivers\npf.sys O58 - SDL:[MD5.C9FA6A70C051FC59D22C2E4CD211AD9B] - 09/12/2008 - 18:15:24 ---A- . (.THOMSON Telecom Belgium - SpeedTouch 330 usb-driver.) -- C:\WINDOWS\system32\drivers\st330.sys O58 - SDL:[MD5.77BDE7B7060D063702F3AF3482895536] - 09/12/2008 - 18:15:24 ---A- . (.THOMSON Telecom Belgium - SpeedTouch WDM Library.) -- C:\WINDOWS\system32\drivers\lpwdm.sys O58 - SDL:[MD5.0017202EB0224F82706F04ED35AB23C2] - 09/12/2008 - 18:15:24 ---A- . (.THOMSON Telecom Belgium - SpeedTouch vbus driver.) -- C:\WINDOWS\system32\drivers\stbus.sys O58 - SDL:[MD5.FC2F19D742F84D2CFF728F20529CBB30] - 09/12/2008 - 18:15:24 ---A- . (.THOMSON Telecom Belgium - SpeedTouch Ethernet Adapter.) -- C:\WINDOWS\system32\drivers\steth.sys O58 - SDL:[MD5.2B3B8C0A2C979DD77BA6DC9376074854] - 02/03/2004 - 08:26:58 ---A- . (.Analog Deivces - USB Firmware loader.) -- C:\WINDOWS\system32\drivers\adildr.sys O58 - SDL:[MD5.D478C566318803A7063B120F026DC0B7] - 02/03/2004 - 08:24:16 ---A- . (.Analog Devices Inc. - ADSL USB Driver.) -- C:\WINDOWS\system32\drivers\adiusbaw.sys O58 - SDL:[MD5.0223B12C642CC6BFBFD9C18697771F0C] - 15/02/2007 - 10:36:34 ---A- . (.Ralink Technology Inc. - Sample Driver for Ralink 802.11g Wireless USB Adapters.) -- C:\WINDOWS\system32\drivers\rt25u98.sys O58 - SDL:[MD5.723281EFD3FC5A3C95AB55236474E2A1] - 08/11/2006 - 14:45:26 ---A- . (.Ralink Technology Inc. - Sample Driver for Ralink 802.11g Wireless USB Adapters.) -- C:\WINDOWS\system32\drivers\rt2500usb.sys O58 - SDL:[MD5.C7BCF9808E2A1B4CABE16FF7FBCE5FAB] - 15/01/2008 - 20:50:50 ---A- . (.Ralink Technology, Corp. - Ralink 802.11 USB Wireless Adapter Driver.) -- C:\WINDOWS\system32\drivers\rt73.sys O58 - SDL:[MD5.9603C9FE2F4CF2877AAC145EF453E2BC] - 15/02/2007 - 10:36:36 ---A- . (.Ralink Technology, Corp. - Ralink 802.11 USB Wireless Adapter Driver.) -- C:\WINDOWS\system32\drivers\rt73u98.sys O58 - SDL:[MD5.15E655BAA989444F56787EF558823643] - 17/09/2009 - 21:11:36 ---A- . (.Meetinghouse Data Communications - IEEE 802.1X Protocol Driver.) -- C:\WINDOWS\system32\drivers\AegisP.sys O58 - SDL:[MD5.67B48A903430C6D4FB58CBACA1866601] - 29/04/2010 - 14:39:26 ---A- . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\WINDOWS\system32\drivers\mbam.sys O58 - SDL:[MD5.F588AEFB69099C7C8DEE6F85D59FC163] - 13/09/2010 - 20:56:10 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system32\drivers\jgsac.sys O58 - SDL:[MD5.84E3B8104BE9E81F8536ACE64D552071] - 16/12/2008 - 20:34:28 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system32\drivers\7d0a1a2a.sys O58 - SDL:[MD5.C7DD7D9739785BD3A6B8499EEC1DEE7E] - 29/04/2010 - 14:39:38 ---A- . (.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) -- C:\WINDOWS\system32\drivers\mbamswissarmy.sys O58 - SDL:[MD5.5B01AF89D16D562825C4DB4530F20CBB] - 17/07/2002 - 07:53:02 ---A- . (.Adaptec - ASPI for WIN32 Kernel Driver.) -- C:\WINDOWS\system32\drivers\ASPI32.SYS O58 - SDL:[MD5.73B339A311DC4E6426900EA8AD1812A5] - 14/08/1999 - 04:00:00 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system32\drivers\navap.sys O58 - SDL:[MD5.C9B8F325B2A22CDA1BDA7B25181B1389] - 15/09/2006 - 21:52:12 ---A- . (.Symantec Corporation - Symantec Event Library.) -- C:\WINDOWS\system32\drivers\SYMEVENT.SYS O58 - SDL:[MD5.7C73B65F1BDFAB9052A5076C0CA622DE] - 05/04/2005 - 10:17:00 ---A- . (.Symantec Corporation - Redirector Filter Driver.) -- C:\WINDOWS\system32\drivers\symredrv.sys O58 - SDL:[MD5.83A0415AB669AFE9F2B7FCCC52F23153] - 05/04/2005 - 10:16:58 ---A- . (.Symantec Corporation - IDS Filter Driver.) -- C:\WINDOWS\system32\drivers\symids.sys O58 - SDL:[MD5.2A8EBB694D702D91D8046B31C3DA2220] - 05/04/2005 - 10:16:56 ---A- . (.Symantec Corporation - NDIS Filter Driver.) -- C:\WINDOWS\system32\drivers\symndis.sys O58 - SDL:[MD5.1F0A3F93FECBA6E873E75AC34538708B] - 05/04/2005 - 10:16:52 ---A- . (.Symantec Corporation - DNS Filter Driver.) -- C:\WINDOWS\system32\drivers\symdns.sys O58 - SDL:[MD5.CA212638C07F7A1736667319589F416E] - 05/04/2005 - 10:16:54 ---A- . (.Symantec Corporation - Firewall Filter Driver.) -- C:\WINDOWS\system32\drivers\symfw.sys O58 - SDL:[MD5.B4562798891DCA27ED67CA07ACBADBD9] - 05/04/2005 - 10:17:02 ---A- . (.Symantec Corporation - Network Dispatch Driver.) -- C:\WINDOWS\system32\drivers\symtdi.sys O58 - SDL:[MD5.F0653E5E164123CAD51EDDA22418C2A3] - 27/01/2007 - 13:11:12 ---A- . (.Kaspersky Lab - spuper-ptor.) -- C:\WINDOWS\system32\drivers\klif.sys O58 - SDL:[MD5.A67A0F77DE44C15524F50C9CB6C0BEC4] - 15/11/2006 - 14:44:50 ---A- . (.Kaspersky Lab - KLOP.) -- C:\WINDOWS\system32\drivers\klop.sys O58 - SDL:[MD5.BC02A8E0DD5DC266E5CC3636DD454403] - 28/09/2006 - 13:36:30 ---A- . (.Kaspersky Lab - Kaspersky Unified Driver.) -- C:\WINDOWS\system32\drivers\kl1.sys O58 - SDL:[MD5.841CEFAB8228EE691705D059E7F21C47] - 25/02/2007 - 17:18:56 ---A- . (.Macrovision Europe Ltd - Macrovision SECURITY Driver.) -- C:\WINDOWS\system32\drivers\CdaD10BA.SYS O58 - SDL:[MD5.D1FD19AD4990BCAABADC5E508487C1E9] - 06/12/2007 - 21:32:00 ---A- . (.Kaspersky Lab - Kaspersky NDIS Interceptor.) -- C:\WINDOWS\system32\drivers\klick.sys O58 - SDL:[MD5.497D2CA06C5A7C6C71D4845C772C0FF7] - 06/12/2007 - 21:32:00 ---A- . (.Kaspersky Lab - Kaspersky TDI Interceptor.) -- C:\WINDOWS\system32\drivers\klin.sys O58 - SDL:[MD5.90A3935D05B494A5A39D37E71F09A677] - 13/11/2007 - 10:25:54 ---A- . (.Macrovision Corporation, Macrovision Europe - Macrovision SECURITY Driver.) -- C:\WINDOWS\system32\drivers\secdrv.sys O58 - SDL:[MD5.D4BAA1AC8DCEA1382E81AA6FE48CDD7C] - 13/03/2006 - 15:49:54 R--A- . (.MCCI - Sony Ericsson W300 Driver Driver.) -- C:\WINDOWS\system32\drivers\w300bus.sys O58 - SDL:[MD5.7681E992A1DA3BD3A2C9BC19D5FAD997] - 13/03/2006 - 15:50:20 R--A- . (.MCCI - Windows 2000/XP support functions.) -- C:\WINDOWS\system32\drivers\w300wh.sys O58 - SDL:[MD5.7681E992A1DA3BD3A2C9BC19D5FAD997] - 13/03/2006 - 15:50:20 R--A- . (.MCCI - Windows 2000/XP support functions.) -- C:\WINDOWS\system32\drivers\w300whnt.sys O58 - SDL:[MD5.F470D5E61EE7F951883F70D676551C89] - 13/03/2006 - 15:50:02 R--A- . (.MCCI - Sony Ericsson W300 USB WMC Modem WDM Driver.) -- C:\WINDOWS\system32\drivers\w300mdm.sys O58 - SDL:[MD5.D130AA0EBE6BF64F0830D27533F466F2] - 13/03/2006 - 15:49:56 R--A- . (.MCCI - Windows 2000/XP support functions.) -- C:\WINDOWS\system32\drivers\w300cm.sys O58 - SDL:[MD5.D130AA0EBE6BF64F0830D27533F466F2] - 13/03/2006 - 15:49:56 R--A- . (.MCCI - Windows 2000/XP support functions.) -- C:\WINDOWS\system32\drivers\w300cmnt.sys O58 - SDL:[MD5.12D415AB0DDD86C42CDC5F120A381F24] - 13/03/2006 - 15:50:00 R--A- . (.MCCI - Sony Ericsson W300 USB WMC Modem Filter Driver.) -- C:\WINDOWS\system32\drivers\w300mdfl.sys O58 - SDL:[MD5.A2BC36924AE02CA1E01EC39C99AFEA09] - 13/03/2006 - 15:50:08 R--A- . (.MCCI - Sony Ericsson W300 USB WMC OBEX Interface Device Driver.) -- C:\WINDOWS\system32\drivers\w300obex.sys O58 - SDL:[MD5.1B575B7384E22F5B278D3D7FC1BAE682] - 13/03/2006 - 15:50:06 R--A- . (.MCCI - Sony Ericsson W300 USB WMC Device Management Driver.) -- C:\WINDOWS\system32\drivers\w300mgmt.sys O58 - SDL:[MD5.A7B8A3A79D35215D798A300DF49ED23F] - 23/02/2005 - 13:58:56 ---A- . (.Arcsoft, Inc. - Arcsoft® ASPI Shell.) -- C:\WINDOWS\system32\drivers\afc.sys O58 - SDL:[MD5.639A9C2DAB390769BE8FA23854435876] - 25/09/2008 - 16:29:18 ---A- . (.AfaTech - AF9015 BDA Driver.) -- C:\WINDOWS\system32\drivers\AF15BDA.sys O58 - SDL:[MD5.C7C17BC80B7264322207ABC31F20EA84] - 21/12/2007 - 07:20:14 ---A- . (.ESET - Eset AntiStealth driver.) -- C:\WINDOWS\system32\drivers\easdrv.sys O58 - SDL:[MD5.711C459909E10659F4A0456EA10E2A51] - 21/12/2007 - 07:21:52 ---A- . (.ESET - Eset Personal Firewall NDIS filter.) -- C:\WINDOWS\system32\drivers\epfwndis.sys O58 - SDL:[MD5.630A3F48F5D211FCFC16F1DD9E4A8580] - 21/12/2007 - 07:21:54 ---A- . (.ESET - Eset Personal Firewall TDI filter.) -- C:\WINDOWS\system32\drivers\epfwtdi.sys O58 - SDL:[MD5.28C76F783EBDDB71643B8BC0821779F0] - 21/12/2007 - 07:21:46 ---A- . (.ESET - Eset Personal Firewall driver.) -- C:\WINDOWS\system32\drivers\epfw.sys O58 - SDL:[MD5.7A25AD652A3003B8854E873A3324E672] - 21/12/2007 - 07:19:54 ---A- . (.ESET - Amon monitor.) -- C:\WINDOWS\system32\drivers\eamon.sys O58 - SDL:[MD5.6D3ADA4CE95CECA7BCE527A08C4C474E] - 05/08/2004 - 04:00:00 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system32\ansi.sys O58 - SDL:[MD5.0FE9F16075C9ACB941C957B7C649176E] - 05/08/2004 - 04:00:00 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system32\country.sys O58 - SDL:[MD5.C6D29F29DE7427B1B0775E53E577B623] - 05/08/2004 - 04:00:00 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system32\himem.sys O58 - SDL:[MD5.582BCDD47CF4B68B5CB528F18E3CB808] - 05/08/2004 - 04:00:00 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system32\key01.sys O58 - SDL:[MD5.7D30A74B5FB9FE3B245A6CE5FBCD71D5] - 05/08/2004 - 04:00:00 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system32\ntdos.sys O58 - SDL:[MD5.03B945AC0481CD8BB161C3569D8ED1C3] - 05/08/2004 - 04:00:00 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system32\ntdos411.sys O58 - SDL:[MD5.BBC957DC18C17CC027EB80B7C77F2AEA] - 05/08/2004 - 04:00:00 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system32\ntdos412.sys O58 - SDL:[MD5.CF9ED169FF86D935E47999E82359E898] - 05/08/2004 - 04:00:00 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system32\ntdos404.sys O58 - SDL:[MD5.3CFFAEFFF23B0D208214A6D3061A5B1B] - 05/08/2004 - 04:00:00 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system32\ntdos804.sys O58 - SDL:[MD5.77EBF3E9386DAA51551AF429052D88D0] - 11/02/2008 - 21:03:20 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system32\giveio.sys O58 - SDL:[MD5.FBBCFEC1379C5C02D88A361993EDF1B8] - 05/08/2004 - 04:00:00 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system32\keyboard.sys O58 - SDL:[MD5.CAAA108FD7BF71989946B39704323455] - 05/08/2004 - 04:00:00 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system32\ntio.sys O58 - SDL:[MD5.6F73F50162DEF60C84B725C18CD9140F] - 05/08/2004 - 04:00:00 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system32\ntio404.sys O58 - SDL:[MD5.0FDD5E69C1FF3B58043D44F2CC743D45] - 05/08/2004 - 04:00:00 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system32\ntio411.sys O58 - SDL:[MD5.8842837C4D8311BF8E72BEE8CCC42217] - 05/08/2004 - 04:00:00 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system32\ntio412.sys O58 - SDL:[MD5.6B56CEB3C6F9D5CD7293DBD9FE23B311] - 05/08/2004 - 04:00:00 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system32\ntio804.sys O58 - SDL:[MD5.FD65BEF5FF8275711D9A56F0B8BB43F1] - 13/08/2003 - 00:27:00 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system32\Machnm32.sys O58 - SDL:[MD5.54CEC199ED5622E5E01AF12509744502] - 25/09/2005 - 16:37:28 ---A- . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\system32\Machnm64.sys O58 - SDL:[MD5.ECD2F9D67B06606064DAF6961A6D5EFE] - 01/03/2006 - 17:53:54 ---A- . (.Printing Communications Assoc., Inc. (PCAUS - PCAUSA NDIS 5.0 Protocol Driver.) -- C:\WINDOWS\system32\pcandis5.sys O58 - SDL:[MD5.B670C5D89F0726B7A2A7DFB4E968CDF8] - 23/09/2003 - 09:38:34 ---A- . (.Printing Communications Assoc., Inc. (PCAUS - PCAUSA NDIS 5.0 MPR Protocol Driver.) -- C:\WINDOWS\system32\pcampr5.sys ---\\ Détournement de DNS (DDNS) (O60) O60 - HKLM\System\CS1\Services\Tcpip\Parameters: NameServer = 93.188.162.127,93.188.161.217 ---\\ Liste des outils de nettoyage (LATC) (O63) O63 - Logiciel: ZHPDiag 1.26 - (.Nicolas Coolman.) O63 - Logiciel: RSIT - (.random/random.) ---\\ Liste des services Legacy (LALS) (O64) O64 - Services: CurCS - (.not file.) - avast! Asynchronous Virus Monitor (Aavmker4) .(.Pas de propriétaire - Pas de description.) - LEGACY_AAVMKER4 O64 - Services: CurCS - C:\Windows\system32\Drivers\adildr.sys - General Purpose USB Driver (adildr.sys) (ADILOADER) .(.Analog Deivces - USB Firmware loader.) - LEGACY_ADILOADER O64 - Services: CurCS - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe - Adobe LM Service (Adobe LM Service) .(.Adobe Systems - System Level Service Utility.) - LEGACY_ADOBE_LM_SERVICE O64 - Services: CurCS - C:\Windows\system32\DRIVERS\AegisP.sys - AEGIS Protocol (IEEE 802.1x) v3.5.3.0 (AegisP) .(.Meetinghouse Data Communications - IEEE 802.1X Protocol Driver.) - LEGACY_AEGISP O64 - Services: CurCS - C:\WINDOWS\system32\drivers\afd.sys - AFD (AFD) .(.Microsoft Corporation - Ancillary Function Driver for WinSock.) - LEGACY_AFD O64 - Services: CurCS - C:\WINDOWS\System32\alg.exe - Service de la passerelle de la couche Application (ALG) .(.Microsoft Corporation - Application Layer Gateway Service.) - LEGACY_ALG O64 - Services: CurCS - C:\WINDOWS\system32\svchost.exe - Gestion d'applications (AppMgmt) .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_APPMGMT O64 - Services: CurCS - C:\Windows\system32\drivers\aspi32.sys - Aspi32 (Aspi32) .(.Adaptec - ASPI for WIN32 Kernel Driver.) - LEGACY_ASPI32 O64 - Services: CurCS - (.not file.) - aswFsBlk (aswFsBlk) .(.Pas de propriétaire - Pas de description.) - LEGACY_ASWFSBLK O64 - Services: CurCS - (.not file.) - avast! Standard Shield Support (aswMon2) .(.Pas de propriétaire - Pas de description.) - LEGACY_ASWMON2 O64 - Services: CurCS - (.not file.) - aswRdr (aswRdr) .(.Pas de propriétaire - Pas de description.) - LEGACY_ASWRDR O64 - Services: CurCS - (.not file.) - avast! Self Protection (aswSP) .(.Pas de propriétaire - Pas de description.) - LEGACY_ASWSP O64 - Services: CurCS - (.not file.) - avast! Network Shield Support (aswTdi) .(.Pas de propriétaire - Pas de description.) - LEGACY_ASWTDI O64 - Services: CurCS - C:\WINDOWS\System32\svchost.exe - Audio Windows (AudioSrv) .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_AUDIOSRV O64 - Services: CurCS - (.not file.) - avast! Antivirus (avast! Antivirus) .(.Pas de propriétaire - Pas de description.) - LEGACY_AVAST!_ANTIVIRUS O64 - Services: CurCS - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\avp.exe - Kaspersky Anti-Virus 6.0 (AVP) .(.Kaspersky Lab - Kaspersky Anti-Virus.) - LEGACY_AVP O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\BEEP.sys - Beep (Beep) .(.Pas de propriétaire - Pas de description.) - LEGACY_BEEP O64 - Services: CurCS - C:\WINDOWS\system32\svchost.exe - Service de transfert intelligent en arrière-plan (BITS) .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_BITS O64 - Services: CurCS - C:\WINDOWS\system32\svchost.exe - Explorateur d'ordinateur (Browser) .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_BROWSER O64 - Services: CurCS - C:\WINDOWS\system32\drivers\CdaD10BA.sys - CdaD10BA (CdaD10BA) .(.Macrovision Europe Ltd - Macrovision SECURITY Driver.) - LEGACY_CDAD10BA O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\CDFS.sys - cdfs (cdfs) .(.Pas de propriétaire - Pas de description.) - LEGACY_CDFS O64 - Services: CurCS - C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe - .NET Runtime Optimization Service v2.0.50727_X86 (clr_optimization_v2.0.50727_32) .(.Microsoft Corporation - .NET Runtime Optimization Service.) - LEGACY_CLR_OPTIMIZATION_V2.0.50727_32 O64 - Services: CurCS - C:\WINDOWS\system32\dllhost.exe - Application système COM+ (COMSysApp) .(.Microsoft Corporation - COM Surrogate.) - LEGACY_COMSYSAPP O64 - Services: CurCS - C:\WINDOWS\system32\svchost.exe - Services de cryptographie (CryptSvc) .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_CRYPTSVC O64 - Services: CurCS - C:\WINDOWS\system32\svchost -k DcomLaunch (.not file.) - Lanceur de processus serveur DCOM (DcomLaunch) .(.Pas de propriétaire - Pas de description.) - LEGACY_DCOMLAUNCH O64 - Services: CurCS - C:\WINDOWS\system32\svchost.exe - Client DHCP (Dhcp) .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_DHCP O64 - Services: CurCS - C:\WINDOWS\System32\dmadmin.exe - Service d'administration du Gestionnaire de disque logique (dmadmin) .(.Microsoft Corp., Veritas Software - Processus du service Gestionnaire de disque.) - LEGACY_DMADMIN O64 - Services: CurCS - C:\Windows\system32\drivers\dmboot.sys - dmboot (dmboot) .(.Microsoft Corp., Veritas Software - Pilote de démarrage du gestionnaire de disq.) - LEGACY_DMBOOT O64 - Services: CurCS - C:\Windows\system32\drivers\dmload.sys - dmload (dmload) .(.Microsoft Corp., Veritas Software. - NT Disk Manager Startup Driver.) - LEGACY_DMLOAD O64 - Services: CurCS - C:\WINDOWS\System32\svchost.exe - Gestionnaire de disque logique (dmserver) .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_DMSERVER O64 - Services: CurCS - C:\WINDOWS\system32\svchost.exe - Client DNS (Dnscache) .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_DNSCACHE O64 - Services: CurCS - C:\Windows\system32\DRIVERS\eamon.sys - EAMON (eamon) .(.ESET - Amon monitor.) - LEGACY_EAMON O64 - Services: CurCS - C:\Windows\system32\DRIVERS\easdrv.sys - easdrv (easdrv) .(.ESET - Eset AntiStealth driver.) - LEGACY_EASDRV O64 - Services: CurCS - (.not file.) - Symantec Eraser Control driver (eeCtrl) .(.Pas de propriétaire - Pas de description.) - LEGACY_EECTRL O64 - Services: CurCS - C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe - Eset Service (ekrn) .(.ESET - Eset Service.) - LEGACY_EKRN O64 - Services: CurCS - C:\Windows\system32\DRIVERS\epfw.sys - epfw (epfw) .(.ESET - Eset Personal Firewall driver.) - LEGACY_EPFW O64 - Services: CurCS - C:\Windows\system32\DRIVERS\epfwtdi.sys - epfwtdi (epfwtdi) .(.ESET - Eset Personal Firewall TDI filter.) - LEGACY_EPFWTDI O64 - Services: CurCS - (.not file.) - epfwtdir (epfwtdir) .(.Pas de propriétaire - Pas de description.) - LEGACY_EPFWTDIR O64 - Services: CurCS - (.not file.) - EraserUtilDrvI2 (EraserUtilDrvI2) .(.Pas de propriétaire - Pas de description.) - LEGACY_ERASERUTILDRVI2 O64 - Services: CurCS - C:\WINDOWS\System32\svchost.exe - Service de rapport d'erreurs (ERSvc) .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_ERSVC O64 - Services: CurCS - C:\WINDOWS\system32\svchost.exe - Système d'événements de COM+ (EventSystem) .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_EVENTSYSTEM O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\FASTFAT.sys - fastfat (fastfat) .(.Pas de propriétaire - Pas de description.) - LEGACY_FASTFAT O64 - Services: CurCS - C:\WINDOWS\System32\svchost.exe - Compatibilité avec le Changement rapide d'utilisateur (FastUserSwitchingCompatibility) .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_FASTUSERSWITCHINGCOMPATIBILITY O64 - Services: CurCS - C:\WINDOWS\system32\fxssvc.exe - Fax (Fax) .(.Microsoft Corporation - Service de télécopie.) - LEGACY_FAX O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\FIPS.sys - Fips (Fips) .(.Pas de propriétaire - Pas de description.) - LEGACY_FIPS O64 - Services: CurCS - C:\Windows\system32\drivers\fltmgr.sys - FltMgr (FltMgr) .(.Microsoft Corporation - Microsoft Filesystem Filter Manager.) - LEGACY_FLTMGR O64 - Services: CurCS - C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe - Windows Presentation Foundation Font Cache 3.0.0.0 (FontCache3.0.0.0) .(.Microsoft Corporation - PresentationFontCache.exe.) - LEGACY_FONTCACHE3.0.0.0 O64 - Services: CurCS - C:\Windows\system32\DRIVERS\fssfltr_tdi.sys - FssFltr (fssfltr) .(.Microsoft Corporation - Family Safety Filter Driver (TDI).) - LEGACY_FSSFLTR O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\FS_REC.sys - Fs_Rec (Fs_Rec) .(.Pas de propriétaire - Pas de description.) - LEGACY_FS_REC O64 - Services: CurCS - C:\PROGRA~1\FICHIE~1\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe - France Telecom Routing Table Service (FTRTSVC) .(.France Telecom SA - Pas de description.) - legacy_ftrtsvc O64 - Services: CurCS - C:\WINDOWS\system32\giveio.sys - giveio (giveio) .(.Pas de propriétaire - Pas de description.) - LEGACY_GIVEIO O64 - Services: CurCS - C:\Windows\system32\DRIVERS\msgpc.sys - Classificateur de paquets générique (Gpc) .(.Microsoft Corporation - MS General Packet Classifier.) - LEGACY_GPC O64 - Services: CurCS - C:\Program Files\Google\Update\GoogleUpdate.exe - Google Update Service (gupdate1c98ba3ef1c41f1) (gupdate1c98ba3ef1c41f1) .(.Google Inc. - Programme d'installation de Google.) - LEGACY_GUPDATE1C98BA3EF1C41F1 O64 - Services: CurCS - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe - Google Updater Service (gusvc) .(.Google - gusvc.) - LEGACY_GUSVC O64 - Services: CurCS - C:\WINDOWS\System32\svchost.exe - Aide et support (helpsvc) .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_HELPSVC O64 - Services: CurCS - C:\WINDOWS\System32\svchost.exe - HID Input Service (HidServ) .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_HIDSERV O64 - Services: CurCS - C:\Windows\system32\Drivers\HTTP.sys - HTTP (HTTP) .(.Microsoft Corporation - HTTP Protocol Stack.) - LEGACY_HTTP O64 - Services: CurCS - C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe - Windows CardSpace (idsvc) .(.Microsoft Corporation - Windows CardSpace.) - LEGACY_IDSVC O64 - Services: CurCS - C:\WINDOWS\system32\imapi.exe - Service COM de gravage de CD IMAPI (ImapiService) .(.Microsoft Corporation - API Image Mastering.) - LEGACY_IMAPISERVICE O64 - Services: CurCS - (.not file.) - int15.sys (int15.sys) .(.Pas de propriétaire - Pas de description.) - LEGACY_INT15.SYS O64 - Services: CurCS - C:\Windows\system32\DRIVERS\ipnat.sys - Traducteur d'adresses réseau IP (IpNat) .(.Microsoft Corporation - IP Network Address Translator.) - LEGACY_IPNAT O64 - Services: CurCS - C:\Windows\system32\DRIVERS\ipsec.sys - Pilote IPSEC (IPSec) .(.Microsoft Corporation - IPSec Driver.) - LEGACY_IPSEC O64 - Services: CurCS - C:\Program Files\Java\jre6\bin\jqs.exe - Java Quick Starter (JavaQuickStarterService) .(.Sun Microsystems, Inc. - Java Quick Starter Service.) - LEGACY_JAVAQUICKSTARTERSERVICE O64 - Services: CurCS - C:\Windows\system32\drivers\kl1.sys - Kl1 (kl1) .(.Kaspersky Lab - Kaspersky Unified Driver.) - LEGACY_KL1 O64 - Services: CurCS - C:\WINDOWS\system32\drivers\klif.sys - Klif (klif) .(.Kaspersky Lab - spuper-ptor.) - LEGACY_KLIF O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\KSECDD.sys - ksecdd (ksecdd) .(.Pas de propriétaire - Pas de description.) - LEGACY_KSECDD O64 - Services: CurCS - C:\WINDOWS\system32\svchost.exe - Serveur (lanmanserver) .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_LANMANSERVER O64 - Services: CurCS - C:\WINDOWS\system32\svchost.exe - Station de travail (LanmanWorkstation) .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_LANMANWORKSTATION O64 - Services: CurCS - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.exe (.not file.) - LiveUpdate (LiveUpdate) .(.Pas de propriétaire - Pas de description.) - LEGACY_LIVEUPDATE O64 - Services: CurCS - C:\WINDOWS\system32\svchost.exe - Assistance TCP/IP NetBIOS (LmHosts) .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_LMHOSTS O64 - Services: CurCS - C:\WINDOWS\system32\drivers\mbamswissarmy.sys - MBAMSwissArmy (MBAMSwissArmy) .(.Malwarebytes Corporation - Malwarebytes' Anti-Malware.) - LEGACY_MBAMSWISSARMY O64 - Services: CurCS - C:\DOCUME~1\alex\LOCALS~1\Temp\mbr.sys (.not file.) - mbr (mbr) .(.Pas de propriétaire - Pas de description.) - LEGACY_MBR O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\MNMDD.sys - mnmdd (mnmdd) .(.Pas de propriétaire - Pas de description.) - LEGACY_MNMDD O64 - Services: CurCS - (.not file.) - mountmgr (mountmgr) .(.Pas de propriétaire - Pas de description.) - LEGACY_MOUNTMGR O64 - Services: CurCS - C:\Windows\system32\DRIVERS\mrxdav.sys - Redirecteur client WebDav (MRxDAV) .(.Microsoft Corporation - Windows NT WebDav Minirdr.) - LEGACY_MRXDAV O64 - Services: CurCS - C:\Windows\system32\DRIVERS\mrxsmb.sys - MRXSMB (MRxSmb) .(.Microsoft Corporation - Windows NT SMB Minirdr.) - LEGACY_MRXSMB O64 - Services: CurCS - C:\Program Files\Microsoft LifeCam\MSCamS32.exe - MSCamSvc (MSCamSvc) .(.Microsoft Corporation - MsCamSvc.exe.) - LEGACY_MSCAMSVC O64 - Services: CurCS - C:\WINDOWS\system32\msdtc.exe - Distributed Transaction Coordinator (MSDTC) .(.Microsoft Corporation - MS DTC console program.) - LEGACY_MSDTC O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\MSFS.sys - Msfs (Msfs) .(.Pas de propriétaire - Pas de description.) - LEGACY_MSFS O64 - Services: CurCS - C:\WINDOWS\system32\msiexec.exe - Windows Installer (MSIServer) .(.Microsoft Corporation - Windows® installer.) - LEGACY_MSISERVER O64 - Services: CurCS - (.not file.) - Mup (Mup) .(.Pas de propriétaire - Pas de description.) - LEGACY_MUP O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\navap.sys - NAVAP (NAVAP) .(.Pas de propriétaire - Pas de description.) - LEGACY_NAVAP O64 - Services: CurCS - (.not file.) - NAVENG (NAVENG) .(.Pas de propriétaire - Pas de description.) - LEGACY_NAVENG O64 - Services: CurCS - (.not file.) - NAVEX15 (NAVEX15) .(.Pas de propriétaire - Pas de description.) - LEGACY_NAVEX15 O64 - Services: CurCS - C:\PROGRA~1\Navnt\alertsvc.exe (.not file.) - NAV Alert (NAV Alert) .(.Pas de propriétaire - Pas de description.) - LEGACY_NAV_ALERT O64 - Services: CurCS - C:\PROGRA~1\Navnt\navapsvc.exe (.not file.) - NAV Auto-Protect (NAV Auto-Protect) .(.Pas de propriétaire - Pas de description.) - LEGACY_NAV_AUTO-PROTECT O64 - Services: CurCS - (.not file.) - Pilote système NDIS (NDIS) .(.Pas de propriétaire - Pas de description.) - LEGACY_NDIS O64 - Services: CurCS - C:\Windows\system32\DRIVERS\ndistapi.sys - Pilote TAPI NDIS d'accès distant (NdisTapi) .(.Microsoft Corporation - NDIS 3.0 connection wrapper driver.) - LEGACY_NDISTAPI O64 - Services: CurCS - C:\Windows\system32\DRIVERS\ndisuio.sys - NDIS mode utilisateur E/S Protocole (Ndisuio) .(.Microsoft Corporation - NDIS User mode I/O Driver.) - LEGACY_NDISUIO O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\NDPROXY.sys - NDProxy (NDProxy) .(.Pas de propriétaire - Pas de description.) - LEGACY_NDPROXY O64 - Services: CurCS - C:\Windows\system32\DRIVERS\netbios.sys - Interface NetBIOS (NetBIOS) .(.Microsoft Corporation - NetBIOS interface driver.) - LEGACY_NETBIOS O64 - Services: CurCS - C:\Windows\system32\DRIVERS\netbt.sys - NetBIOS sur TCP/IP (NetBT) .(.Microsoft Corporation - MBT Transport driver.) - LEGACY_NETBT O64 - Services: CurCS - C:\WINDOWS\System32\svchost.exe - Connexions réseau (Netman) .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_NETMAN O64 - Services: CurCS - C:\WINDOWS\system32\svchost.exe - NLA (Network Location Awareness) (Nla) .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_NLA O64 - Services: CurCS - C:\PROGRA~1\Navnt\npssvc.exe (.not file.) - Norton Program Scheduler (Norton Program Scheduler) .(.Pas de propriétaire - Pas de description.) - LEGACY_NORTON_PROGRAM_SCHEDULER O64 - Services: CurCS - C:\Windows\system32\drivers\NPF.sys - WinPcap Packet Driver (NPF) (NPF) .(.CACE Technologies, Inc. - npf.sys (NT5/6 x86) Kernel Driver.) - LEGACY_NPF O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\NPFS.sys - Npfs (Npfs) .(.Pas de propriétaire - Pas de description.) - LEGACY_NPFS O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\NTFS.sys - ntfs (ntfs) .(.Pas de propriétaire - Pas de description.) - LEGACY_NTFS O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\NULL.sys - Null (Null) .(.Pas de propriétaire - Pas de description.) - LEGACY_NULL O64 - Services: CurCS - (.not file.) - PartMgr (PartMgr) .(.Pas de propriétaire - Pas de description.) - LEGACY_PARTMGR O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\PARVDM.sys - ParVdm (ParVdm) .(.Pas de propriétaire - Pas de description.) - LEGACY_PARVDM O64 - Services: CurCS - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe (.not file.) - Planificateur LiveUpdate automatique (Planificateur LiveUpdate automatique) .(.Pas de propriétaire - Pas de description.) - LEGACY_PLANIFICATEUR_LIVEUPDATE_AUTOMATIQUE O64 - Services: CurCS - C:\WINDOWS\system32\lsass.exe - Services IPSEC (PolicyAgent) .(.Microsoft Corporation - LSA Shell (Export Version).) - LEGACY_POLICYAGENT O64 - Services: CurCS - C:\WINDOWS\system32\lsass.exe - Emplacement protégé (ProtectedStorage) .(.Microsoft Corporation - LSA Shell (Export Version).) - LEGACY_PROTECTEDSTORAGE O64 - Services: CurCS - C:\WINDOWS\System32\svchost.exe - PCANDIS5 NDIS Protocol Monitor (pwpaqqyl) .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_PWPAQQYL O64 - Services: CurCS - C:\Windows\system32\DRIVERS\rasacd.sys - Pilote de connexion automatique d'accès distant (RasAcd) .(.Microsoft Corporation - RAS Automatic Connection Driver.) - LEGACY_RASACD O64 - Services: CurCS - C:\WINDOWS\system32\svchost.exe - Gestionnaire de connexion automatique d'accès distant (RasAuto) .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_RASAUTO O64 - Services: CurCS - C:\WINDOWS\system32\svchost.exe - Gestionnaire de connexions d'accès distant (RasMan) .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_RASMAN O64 - Services: CurCS - C:\Windows\system32\DRIVERS\rdbss.sys - Rdbss (Rdbss) .(.Microsoft Corporation - Redirected Drive Buffering SubSystem Driver.) - LEGACY_RDBSS O64 - Services: CurCS - C:\Windows\system32\DRIVERS\RDPCDD.sys - RDPCDD (RDPCDD) .(.Microsoft Corporation - RDP Miniport.) - LEGACY_RDPCDD O64 - Services: CurCS - (.not file.) - RDPNP (RDPNP) .(.Pas de propriétaire - Pas de description.) - LEGACY_RDPNP O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\RDPWD.sys - RDPWD (RDPWD) .(.Pas de propriétaire - Pas de description.) - LEGACY_RDPWD O64 - Services: CurCS - C:\WINDOWS\system32\sessmgr.exe - Gestionnaire de session d'aide sur le Bureau à distance (RDSessMgr) .(.Microsoft Corporation - Gestionnaire de session de l'aide sur le Bu.) - LEGACY_RDSESSMGR O64 - Services: CurCS - C:\WINDOWS\system32\svchost -k rpcss (.not file.) - Appel de procédure distante (RPC) (RpcSs) .(.Pas de propriétaire - Pas de description.) - LEGACY_RPCSS O64 - Services: CurCS - C:\WINDOWS\system32\rsvp.exe - QoS RSVP (RSVP) .(.Microsoft Corporation - Microsoft RSVP.) - LEGACY_RSVP O64 - Services: CurCS - C:\WINDOWS\system32\lsass.exe - Gestionnaire de comptes de sécurité (SamSs) .(.Microsoft Corporation - LSA Shell (Export Version).) - LEGACY_SAMSS O64 - Services: CurCS - (.not file.) - SAVRTPEL (SAVRTPEL) .(.Pas de propriétaire - Pas de description.) - LEGACY_SAVRTPEL O64 - Services: CurCS - C:\WINDOWS\System32\SCardSvr.exe - Carte à puce (SCardSvr) .(.Microsoft Corporation - Serveur de gestion de ressources des cartes.) - legacy_scardsvr O64 - Services: CurCS - C:\WINDOWS\System32\svchost.exe - Planificateur de tâches (Schedule) .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_SCHEDULE O64 - Services: CurCS - C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe - SeaPort (SeaPort) .(.Microsoft Corporation - Microsoft SeaPort Search Enhancement Broker.) - LEGACY_SEAPORT O64 - Services: CurCS - C:\WINDOWS\System32\svchost.exe - Connexion secondaire (seclogon) .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_SECLOGON O64 - Services: CurCS - C:\WINDOWS\system32\svchost.exe - Notification d'événement système (SENS) .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_SENS O64 - Services: CurCS - C:\WINDOWS\system32\svchost.exe - Pare-feu Windows / Partage de connexion Internet (SharedAccess) .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_SHAREDACCESS O64 - Services: CurCS - C:\WINDOWS\System32\svchost.exe - Détection matériel noyau (ShellHWDetection) .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_SHELLHWDETECTION O64 - Services: CurCS - C:\WINDOWS\system32\spoolsv.exe - Spouleur d'impression (Spooler) .(.Microsoft Corporation - Spooler SubSystem App.) - LEGACY_SPOOLER O64 - Services: CurCS - C:\WINDOWS\system32\DRIVERS\sr.sys - Pilote de filtre de restauration système (sr) .(.Microsoft Corporation - Pilote de filtre de système de fichiers pou.) - LEGACY_SR O64 - Services: CurCS - C:\WINDOWS\system32\svchost.exe - Service de restauration système (srservice) .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_SRSERVICE O64 - Services: CurCS - C:\Windows\system32\DRIVERS\srv.sys - Srv (Srv) .(.Microsoft Corporation - Server driver.) - LEGACY_SRV O64 - Services: CurCS - C:\WINDOWS\system32\svchost.exe - Service de découvertes SSDP (SSDPSRV) .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_SSDPSRV O64 - Services: CurCS - C:\WINDOWS\system32\svchost.exe - Acquisition d'image Windows (WIA) (stisvc) .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_STISVC O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\SYMEVENT.sys - SymEvent (SymEvent) .(.Pas de propriétaire - Pas de description.) - LEGACY_SYMEVENT O64 - Services: CurCS - (.not file.) - SYMIDSCO (SYMIDSCO) .(.Pas de propriétaire - Pas de description.) - LEGACY_SYMIDSCO O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\SYMREDRV.sys - SYMREDRV (SYMREDRV) .(.Symantec Corporation - Redirector Filter Driver.) - LEGACY_SYMREDRV O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\SYMTDI.sys - SYMTDI (SYMTDI) .(.Symantec Corporation - Network Dispatch Driver.) - LEGACY_SYMTDI O64 - Services: CurCS - C:\Program Files\Fichiers communs\Symantec Shared\Security Center\SymWSC.exe (.not file.) - SymWMI Service (SymWSC) .(.Pas de propriétaire - Pas de description.) - LEGACY_SYMWSC O64 - Services: CurCS - C:\WINDOWS\System32\svchost.exe - Téléphonie (TapiSrv) .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_TAPISRV O64 - Services: CurCS - C:\Windows\system32\DRIVERS\tcpip.sys - Pilote du protocole TCP/IP (Tcpip) .(.Microsoft Corporation - TCP/IP Protocol Driver.) - LEGACY_TCPIP O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\TDPIPE.sys - TDPIPE (TDPIPE) .(.Pas de propriétaire - Pas de description.) - LEGACY_TDPIPE O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\TDTCP.sys - TDTCP (TDTCP) .(.Pas de propriétaire - Pas de description.) - LEGACY_TDTCP O64 - Services: CurCS - C:\WINDOWS\System32\svchost -k DComLaunch (.not file.) - Services Terminal Server (TermService) .(.Pas de propriétaire - Pas de description.) - LEGACY_TERMSERVICE O64 - Services: CurCS - C:\WINDOWS\System32\svchost.exe - Thèmes (Themes) .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_THEMES O64 - Services: CurCS - C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe - TomTomHOMEService (TomTomHOMEService) .(.TomTom - Windows Service for TomTom HOME.) - LEGACY_TOMTOMHOMESERVICE O64 - Services: CurCS - C:\WINDOWS\system32\svchost.exe - Client de suivi de lien distribué (TrkWks) .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_TRKWKS O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\UDFS.sys - Udfs (Udfs) .(.Pas de propriétaire - Pas de description.) - LEGACY_UDFS O64 - Services: CurCS - C:\WINDOWS\system32\svchost.exe - Hôte de périphérique universel Plug-and-Play (upnphost) .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_UPNPHOST O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\VGA.sys - vga (vga) .(.Pas de propriétaire - Pas de description.) - LEGACY_VGA O64 - Services: CurCS - C:\WINDOWS\system32\drivers\vga.sys - VgaSave (VgaSave) .(.Microsoft Corporation - VGA/Super VGA Video Driver.) - LEGACY_VGASAVE O64 - Services: CurCS - C:\WINDOWS\system32\Drivers\VOLSNAP.sys - VolSnap (VolSnap) .(.Pas de propriétaire - Pas de description.) - LEGACY_VOLSNAP O64 - Services: CurCS - C:\WINDOWS\System32\svchost.exe - Horloge Windows (W32Time) .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_W32TIME O64 - Services: CurCS - C:\Windows\system32\DRIVERS\wanarp.sys - Pilote ARP IP d'accès distant (Wanarp) .(.Microsoft Corporation - MS Remote Access and Routing ARP Driver.) - LEGACY_WANARP O64 - Services: CurCS - C:\WINDOWS\system32\svchost.exe - WebClient (WebClient) .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_WEBCLIENT O64 - Services: CurCS - C:\WINDOWS\system32\svchost.exe - Infrastructure de gestion Windows (winmgmt) .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_WINMGMT O64 - Services: CurCS - C:\WINDOWS\system32\wbem\wmiapsrv.exe - Carte de performance WMI (WmiApSrv) .(.Microsoft Corporation - Service de la carte de performance WMI.) - LEGACY_WMIAPSRV O64 - Services: CurCS - C:\WINDOWS\System32\svchost.exe - Centre de sécurité (wscsvc) .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_WSCSVC O64 - Services: CurCS - C:\WINDOWS\system32\svchost.exe - Mises à jour automatiques (wuauserv) .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_WUAUSERV O64 - Services: CurCS - C:\WINDOWS\System32\svchost.exe - Configuration automatique sans fil (WZCSVC) .(.Microsoft Corporation - Generic Host Process for Win32 Services.) - LEGACY_WZCSVC ---\\ File Associations Shell Spawning (O67) O67 - Shell Spawning: <.bat> <batfile>[HKLM\..\open\Command] "%1" %* (.not file.) O67 - Shell Spawning: <.cpl> <cplfile>[HKLM\..\cplopen\Command] (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll O67 - Shell Spawning: <.cmd> <cmdfile>[HKLM\..\open\Command] "%1" %* (.not file.) O67 - Shell Spawning: <.com> <comfile>[HKLM\..\open\Command] "%1" %* (.not file.) O67 - Shell Spawning: <.exe> <exefile>[HKLM\..\open\Command] "%1" %* (.not file.) O67 - Shell Spawning: <.html> <htmlfile>[HKLM\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\IEXPLORE.exe O67 - Shell Spawning: <.js> <JSFile>[HKLM\..\open\Command] (.Microsoft Corporation - Microsoft ® Console Based Script Host.) -- C:\WINDOWS\System32\CScript.exe O67 - Shell Spawning: <.reg> <regfile>[HKLM\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\WINDOWS\regedit.exe O67 - Shell Spawning: <.bat> <batfile>[HKCR\..\open\Command] "%1" %* (.not file.) O67 - Shell Spawning: <.cpl> <cplfile>[HKCR\..\cplopen\Command] (.Microsoft Corporation - DLL commune du shell Windows.) -- C:\Windows\System32\shell32.dll O67 - Shell Spawning: <.cmd> <cmdfile>[HKCR\..\open\Command] "%1" %* (.not file.) O67 - Shell Spawning: <.com> <comfile>[HKCR\..\open\Command] "%1" %* (.not file.) O67 - Shell Spawning: <.exe> <exefile>[HKCR\..\open\Command] "%1" %* (.not file.) O67 - Shell Spawning: <.html> <htmlfile>[HKCR\..\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\IEXPLORE.exe O67 - Shell Spawning: <.js> <JSFile>[HKCR\..\open\Command] (.Microsoft Corporation - Microsoft ® Console Based Script Host.) -- C:\WINDOWS\System32\CScript.exe O67 - Shell Spawning: <.reg> <regfile>[HKCR\..\open\Command] (.Microsoft Corporation - Éditeur du Registre.) -- C:\WINDOWS\regedit.exe ---\\ Start Menu Internet (SMI) (O68) O68 - StartMenuInternet: <FIREFOX.EXE> <Mozilla Firefox>[HKLM\..\Shell\open\Command] (.Mozilla Corporation - Firefox.) -- C:\Program Files\Mozilla Firefox\firefox.exe O68 - StartMenuInternet: <IEXPLORE.EXE> <Internet Explorer>[HKLM\..\Shell\open\Command] (.Microsoft Corporation - Internet Explorer.) -- C:\Program Files\Internet Explorer\iexplore.exe ---\\ Search Browser Infection (SBI) (O69) O69 - SBI: SearchScopes [HKCU] {0633EE93-D776-472f-A0FF-E1416B8B2E3A} - (@ieframe.dll,-12512) - Bing O69 - SBI: SearchScopes [HKCU] {64095270-8DE8-4A4F-88E0-34FF5E8DD94C} [DefaultScope] - (Google) - http://www.google.com O69 - SBI: SearchScopes [HKCU] {BE28C22E-F666-424d-B5FD-125C4AFEE34E} - (MyHeritage Search) - MyHeritage.com Search ---\\ Recherche Master Boot Record Infection (MBR)(O80) Stealth MBR rootkit/Mebroot/Sinowal detector 0.3.7 by Gmer, GMER - Rootkit Detector and Remover Run by alex at 14/09/2010 20:37:53 device: opened successfully user: MBR read successfully called modules: ntoskrnl.exe CLASSPNP.SYS disk.sys >>UNKNOWN [0x85EDBEC5]<< kernel: MBR read successfully user & kernel MBR OK ---\\ Recherche Master Boot Record Infection (MBRCheck)(O80) MBRCheck, version 1.2.3 by ad13, http://ad13.geekstog Run by alex at 14/09/2010 20:38:00 149 GB \\.\PhysicalDrive0 Unknown MBR code SHA1: 6A37CCD118436B688B51F6BD4C2B47A895EBDF7F Found non-standard or infected MBR. ---\\ Internet Feature Controls (IFC) (O81) O81 - IFC: Internet Feature Controls [HKUS\.DEFAULT] [FEATURE_BROWSER_EMULATION] -- svchost.exe O81 - IFC: Internet Feature Controls [HKUS\S-1-5-18] [FEATURE_BROWSER_EMULATION] -- svchost.exe ---\\ Recherche des services démarrés par Svchost (SSS) (O83) O83 - Search Svchost Services: AppMgmt (AppMgmt) . (.Pas de propriétaire - Pas de description.) -- C:\WINDOWS\System32\appmgmts.dll [0] O83 - Search Svchost Services: AudioSrv (AudioSrv) . (.Microsoft Corporation - Windows Audio Service.) -- C:\WINDOWS\System32\audiosrv.dll [42496] O83 - Search Svchost Services: Browser (Browser) . (.Microsoft Corporation - Computer Browser Service DLL.) -- C:\WINDOWS\System32\browser.dll [77824] O83 - Search Svchost Services: CryptSvc (CryptSvc) . (.Microsoft Corporation - Cryptographic Services.) -- C:\WINDOWS\System32\cryptsvc.dll [62464] O83 - Search Svchost Services: DMServer (DMServer) . (.Microsoft Corp. - DLL Service gestionnaire de disque logique.) -- C:\WINDOWS\System32\dmserver.dll [24576] O83 - Search Svchost Services: DHCP (DHCP) . (.Microsoft Corporation - Service client DHCP.) -- C:\WINDOWS\System32\dhcpcsvc.dll [127488] O83 - Search Svchost Services: ERSvc (ERSvc) . (.Microsoft Corporation - Windows Error Reporting Service.) -- C:\WINDOWS\System32\ersvc.dll [23040] O83 - Search Svchost Services: EventSystem (EventSystem) . (.Microsoft Corporation - Pas de description.) -- C:\WINDOWS\system32\es.dll [253952] O83 - Search Svchost Services: FastUserSwitchingCompatibility (FastUserSwitchingCompatibility) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\WINDOWS\System32\shsvcs.dll [135680] O83 - Search Svchost Services: HidServ (HidServ) . (.Microsoft Corporation - HID Audio Service.) -- C:\WINDOWS\System32\hidserv.dll [21504] O83 - Search Svchost Services: LanmanServer (LanmanServer) . (.Microsoft Corporation - Server Service DLL.) -- C:\WINDOWS\System32\srvsvc.dll [96768] O83 - Search Svchost Services: LanmanWorkstation (LanmanWorkstation) . (.Microsoft Corporation - Workstation Service DLL.) -- C:\WINDOWS\System32\wkssvc.dll [132096] O83 - Search Svchost Services: Messenger (Messenger) . (.Microsoft Corporation - NT Messenger Service.) -- C:\WINDOWS\System32\msgsvc.dll [33792] O83 - Search Svchost Services: pwpaqqyl (pwpaqqyl) . (.ekrytlhafs Corporation - wmfpymfz DLL.) -- c:\windows\system32\dlob947.dll [746496] O83 - Search Svchost Services: Netman (Netman) . (.Microsoft Corporation - Gestionnaire de connexions réseau.) -- C:\WINDOWS\System32\netman.dll [198144] O83 - Search Svchost Services: Nla (Nla) . (.Microsoft Corporation - Fournisseur de service Sockets 2.0 de Microsoft Windows.) -- C:\WINDOWS\System32\mswsock.dll [247808] O83 - Search Svchost Services: Ntmssvc (Ntmssvc) . (.Microsoft Corporation - Gestionnaire de stockage amovible.) -- C:\WINDOWS\system32\ntmssvc.dll [438272] O83 - Search Svchost Services: Rasauto (Rasauto) . (.Microsoft Corporation - Remote Access AutoDial Manager.) -- C:\WINDOWS\System32\rasauto.dll [88576] O83 - Search Svchost Services: Rasman (Rasman) . (.Microsoft Corporation - Remote Access Connection Manager.) -- C:\WINDOWS\System32\rasmans.dll [186368] O83 - Search Svchost Services: Remoteaccess (Remoteaccess) . (.Microsoft Corporation - Dynamic Interface Manager.) -- C:\WINDOWS\System32\mprdim.dll [53248] O83 - Search Svchost Services: Schedule (Schedule) . (.Microsoft Corporation - Moteur du Planificateur de tâches.) -- C:\WINDOWS\system32\schedsvc.dll [194560] O83 - Search Svchost Services: Seclogon (Seclogon) . (.Microsoft Corporation - DLL de service d'ouverture de session secondaire.) -- C:\WINDOWS\System32\seclogon.dll [18944] O83 - Search Svchost Services: SENS (SENS) . (.Microsoft Corporation - System Event Notification Service (SENS).) -- C:\WINDOWS\system32\sens.dll [39424] O83 - Search Svchost Services: Sharedaccess (Sharedaccess) . (.Microsoft Corporation - Composants de l'application d'assistance à Microsoft NAT.) -- C:\WINDOWS\System32\ipnathlp.dll [332800] O83 - Search Svchost Services: SRService (SRService) . (.Microsoft Corporation - Service de restauration du système.) -- C:\WINDOWS\system32\srsvc.dll [171520] O83 - Search Svchost Services: Tapisrv (Tapisrv) . (.Microsoft Corporation - Serveur de téléphonie Microsoft® Windows.) -- C:\WINDOWS\System32\tapisrv.dll [249856] O83 - Search Svchost Services: Themes (Themes) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\WINDOWS\System32\shsvcs.dll [135680] O83 - Search Svchost Services: TrkWks (TrkWks) . (.Microsoft Corporation - Distributed Link Tracking Client.) -- C:\WINDOWS\system32\trkwks.dll [90112] O83 - Search Svchost Services: W32Time (W32Time) . (.Microsoft Corporation - Service de temps Windows.) -- C:\WINDOWS\system32\w32time.dll [178176] O83 - Search Svchost Services: WZCSVC (WZCSVC) . (.Microsoft Corporation - Service configuration automatique sans fil.) -- C:\WINDOWS\System32\wzcsvc.dll [483840] O83 - Search Svchost Services: winmgmt (winmgmt) . (.Microsoft Corporation - WMI.) -- C:\WINDOWS\system32\wbem\WMIsvc.dll [145408] O83 - Search Svchost Services: wscsvc (wscsvc) . (.Microsoft Corporation - Windows Security Center Service.) -- C:\WINDOWS\system32\wscsvc.dll [80896] O83 - Search Svchost Services: xmlprov (xmlprov) . (.Microsoft Corporation - Network Provisioning Service.) -- C:\WINDOWS\System32\xmlprov.dll [129024] O83 - Search Svchost Services: BITS (BITS) . (.Microsoft Corporation - Service de transfert intelligent en arrière-plan.) -- C:\WINDOWS\system32\qmgr.dll [409088] O83 - Search Svchost Services: wuauserv (wuauserv) . (.Microsoft Corporation - Windows Update AutoUpdate Service.) -- C:\WINDOWS\system32\wuauserv.dll [6656] O83 - Search Svchost Services: ShellHWDetection (ShellHWDetection) . (.Microsoft Corporation - Dll des services Windows Shell.) -- C:\WINDOWS\System32\shsvcs.dll [135680] O83 - Search Svchost Services: helpsvc (helpsvc) . (.Microsoft Corporation - Microsoft PCHealth Service Holder.) -- C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll [38400] O83 - Search Svchost Services: WmdmPmSN (WmdmPmSN) . (.Microsoft Corporation - Microsoft Media Device Service Provider.) -- C:\WINDOWS\system32\MsPMSNSv.dll [27136] O83 - Search Svchost Services: napagent (napagent) . (.Microsoft Corporation - Exécution du service Agent de quarantaine.) -- C:\WINDOWS\System32\qagentrt.dll [293376] O83 - Search Svchost Services: hkmsvc (hkmsvc) . (.Microsoft Corporation - Service Gestion des clés.) -- C:\WINDOWS\System32\kmsvc.dll [61440] ---\\ Etat général des services non Microsoft (EGS) (SR=Running, SS=Stopped) SS - | Disabled 28/08/2007 100352 | Adobe LM Service (Adobe LM Service) . (.Adobe Systems.) - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe SS - | Disabled 08/11/2006 184320 | Kaspersky Anti-Virus 6.0 (AVP) . (.Kaspersky Lab.) - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\avp.exe SS - | Demand 21/12/2007 19200 | Eset HTTP Server (EhttpSrv) . (.ESET.) - C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe SS - | Auto 21/12/2007 468224 | Eset Service (ekrn) . (.ESET.) - C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe SS - | Disabled 11/12/2007 94208 | France Telecom Routing Table Service (ftrtsvc) . (.France Telecom SA.) - C:\PROGRA~1\FICHIE~1\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe SS - | Disabled 10/02/2009 133104 | Google Update Service (gupdate1c98ba3ef1c41f1) (gupdate1c98ba3ef1c41f1) . (.Google Inc..) - C:\Program Files\Google\Update\GoogleUpdate.exe SS - | Disabled 12/05/2007 138680 | Google Updater Service (gusvc) . (.Google.) - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe SS - | Disabled 21/02/2009 152984 | Java Quick Starter (JavaQuickStarterService) . (.Sun Microsystems, Inc..) - C:\Program Files\Java\jre6\bin\jqs.exe SS - | Disabled 21/02/2009 0 | LiveUpdate (LiveUpdate) . (.Pas de propriétaire.) - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.exe SS - | Disabled 21/02/2009 0 | NAV Alert (NAV Alert) . (.Pas de propriétaire.) - C:\PROGRA~1\Navnt\alertsvc.exe SS - | Disabled 21/02/2009 0 | NAV Auto-Protect (NAV Auto-Protect) . (.Pas de propriétaire.) - C:\PROGRA~1\Navnt\navapsvc.exe SS - | Disabled 21/02/2009 0 | Norton Program Scheduler (Norton Program Scheduler) . (.Pas de propriétaire.) - C:\PROGRA~1\Navnt\npssvc.exe SS - | Disabled 21/02/2009 0 | Planificateur LiveUpdate automatique (Planificateur LiveUpdate automatique) . (.Pas de propriétaire.) - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe SS - | Disabled 21/02/2009 0 | Symantec Network Drivers Service (SNDSrvc) . (.Pas de propriétaire.) - C:\Program Files\Fichiers communs\Symantec Shared\SNDSrvc.exe SS - | Disabled 21/02/2009 0 | SymWMI Service (SymWSC) . (.Pas de propriétaire.) - C:\Program Files\Fichiers communs\Symantec Shared\Security Center\SymWSC.exe SS - | Disabled 13/11/2009 92008 | TomTomHOMEService (TomTomHOMEService) . (.TomTom.) - C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe ---\\ Infection BT - BHO/Toolbar (Possible) [HKLM\Software\GamesBarSetup] End of the scan (1462 lines in 00mn 59s)(0) merci au mooins a ceux qui lise

OULALA C4EST LA CATA ! j'ai essayer de mettre a jour MBAM mais comme je ne peux me brancher en mode sans echec j'ai pas de connection a internet (WIFI) !??? Y aurait il quelqu'un parmis tout les gens qui sont ici qui pourrait m'eclairer de leur grand savoir ? SVP merci d'avance Alex

Bonsoir amis aideurs ! J’ai beau travailler dans ce domaine coté humain, je suis vraiment en détresse coté machine ! Alors voilà, je me débats depuis hier avec le PC d’une amie. Je ne peux absolument plus rien faire car à chaque fois que je clic sur quelque chose, il m’ouvre SECURITY TOOLS et ANTIMALWARE DOCTOR ! Je suis bien sur que tout ça vous parle, à vous les maîtres de ces machines … à moi par contre …… pas du tout ! Après avoir cherché un peu sur le net j’ai essayé pas mal de chose sans résultat malheureusement : - démarrage (obligatoire) en mode sans échec avec réseau - RKill - malwarebytes-anti-malware tout semblait ok alors je redémarre en normal et là c’est le drame rebelote les « supers » fenêtres reviennent et rebloque la bête ! Est-ce que quelqu’un pourrait me venir en aide au plus vite ? Je suis prête à suivre les consignes à la lettre de la personne qui voudra bien voler à mon secours, et à y passer la nuit si il le faut ! Evidemment il ne faut pas que je fasse de dégât dans les fichiers étant donné que le PC n’est pas à moi, sinon je risque sérieusement de me faire étriper.  HELP HELP HELP Merci d’avance Alexandra